All systems operational

Sign-In & Password Security

Understand how sign-in and passwords are protected. Authentication is handled by the platform; password reset and 2FA are the main user-facing controls.

#Purpose

Keep sign-in secure and help users recover safely.

#When to use this

When setting security expectations or helping a user regain access.

#At a glance

DetailValue
Required permissionsUsers manage their own passwords; admins advise
Administrator levelAdmin guidance; platform-managed auth
Portal areas usedAuthentication, Account security

#Step by step

1

Set expectations

Ask users to use strong, unique passwords.
2

Enable 2FA

Have privileged users add 2FA.
3

Use password reset for recovery

Users reset via the forgot-password flow.
4

Force sign-out if needed

Users can sign out of all devices if an account may be compromised.

#Approval points

No formal approval gate

This administrative action does not require a separate sign-off, but review carefully before applying changes.

#Security notes

Security considerations

  • Configurable organization-level password policies and session-timeout settings are not available today (auth is platform-managed); enforce strong passwords through policy and 2FA.
  • Advise users to sign out of all devices if they suspect compromise.

#Best practices

  • Require strong, unique passwords by policy.
  • Pair passwords with 2FA.

#Common mistakes

  • Assuming an admin-configurable password policy exists.
  • Not enabling 2FA.

#Troubleshooting

If this happensTry this
A user cannot sign inHave them reset their password and confirm activation; see the login troubleshooting guide.

#FAQ

Can I set a minimum password length org-wide?

Configurable org password policies are not available today; enforce through policy and 2FA.

#Keep exploring

#Business modules & workflows

Still need help?

Can’t find what you’re looking for? The DevSphere OS team is happy to help.