Managing password and multi-factor authentication (MFA) settings in FranConnect is essential for maintaining account security and aligning with your organization’s access policies. This article will guide you through how to access and configure password requirements, set limits on invalid login attempts, and enable MFA settings—including one-time password (OTP) options—for added protection.
Managing Your Password Settings
To manage your password settings, first log into your FranConnect environment. Click the gear icon at the top of the page to access your Admin settings.
Click Configuration on the left-hand sidebar and then click Configure Password Settings.
You will be taken to the following page:
The "Configure Password Settings" menu contains all of your typical administrative password controls.
The "Multi-Factor Authentication Settings" menu contains all of the options available to you for configuring MFA. MFA will allow you to have your users enter a one-time password (OTP) which is emailed to them on every attempted login. Let's take a closer look at the MFA menu.
Once you have enabled MFA, the new menu options will appear. Lets take a closer look at each one.
- No. of invalid attempts: The number of invalid attempts allowed before an account gets locked - if "0" is chosen, there will be no limit to the number of invalid attempts allowed
- Lock time period (minutes): The amount of time in minutes that an account will be locked for if it hits the chosen number of allowed invalid attempts
- OTP Duration (minutes): The amount of time an OTP for MFA is valid for authentication after the email is sent
- FDD And Candidate Portals Multi-Factor Authentication: Determines whether a OTP will be required to access the FDD and Candidate Portals
- Remember User's Device as per Network Configuration: Determines whether the product will remember the device on future logins or not
Conclusion
By properly configuring your password and MFA settings in FranConnect, you can strengthen your organization’s security posture and help prevent unauthorized access. Whether you're setting password policies or enabling OTP-based authentication, these tools give you greater control over user access and data protection across the platform.