Security and password protection policies

A good password and security policy is vital to prevent unauthorised access and / or exploit company resources.

In Acrelia we take security very seriously, for this reason, we have established policies for the use of secure passwords, protection and frequency of changes thereof. In addition, we have various security mechanisms to prevent unauthorised access attempts to customer accounts on our platform, such as ip and user blocking, among others.

Although our password protection policy and our security mechanisms are very strict, some companies may have more restrictive security and access policies.  

In Acrelia each company can configure its own access and password protection policy.

From the "Settings - Security" section, you can make changes to the access policy of your account as long as they meet the minimum security requirements set by default by Acrelia.

In any case, all users accessing Acrelia are responsible for taking appropriate measures to select and protect their passwords.

The "Security" screen is divided into different sections:

Platform Access

This section allows you to configure the following:

• Maximum login attempts: this refers to how many times a user can enter an incorrect password before being locked out.
• Lockout time in minutes: For standard users, how much time must elapse after their account has been locked before they can try to log in again. Standard users can be unlocked immediately by accessing their user profile from the "Manage users" section. Administrators and account owners, on the other hand, must contact us to unlock their account.
• Password expiration in days: Every how many days the user will be asked to change their password.
• Password history: Number of new passwords the user must set before being able to reuse an old password.

Minimum password length

From this section you can change the minimum password length for administrator and user profiles. It is not possible to define the length of the owner's password for security reasons, but if you need a longer length than the default, you can contact us.

Required characters

It is possible to configure what kind of characters are required when setting a new password. On the "Required Characters" section you can configure whether passwords should include lower case, upper case, numbers and/or symbols.

Unblocking users

In the section "Access to the platform", on "Blocking time in minutes" you can establish how much time must elapse after blocking the account of a standard user before he/she can try to access again.

However, it may happen that you require one of your users to access immediately, in these cases you can proceed to unblock their user manually as long as you have the necessary permissions.

Go to "Settings - Manage users" or to "Subaccounts - Manage users". You will see all the users of your account / sub-account, and you can easily identify those who are blocked.

Edit the user you want to unblock. In the "Blocked user" section, click on "Unblock user".

From that moment on, the user will be able to access their account again.