This is to inform you that we need following Password Polices in Application, as per our ITGC audit recommendation.
User Account should lock on unsuccessful login attempts. No. of attempts should be configurable.
To UNLOCK the account should be part of Admin rights.
In Password Policy we required not allowing last 3 used passwords.
Account lockout time 15 minutes in idle condition.
Regards,
Avinash Singh
Need an option to manage auto session logout
Merged
Auto Kill the session after a specific idle time interval.
Merged
Auto logout user after certain minutes of inactivity
Merged
Auto Kill sessions idle for 15 minutes
Merged