IntroductionDocument PurposeThis document provides an overview of the LiveVox password management functionality. It also includes general guidelines for the client level SFTP credentials. Password Management featuresGeneral GuidelinesLiveVox portal and agent portal access: - Username and password are case sensitive. With the password management feature enabled, the following restrictions are implemented.
- Password strength is selectable at three levels:
- Medium: User and agent passwords must be a minimum of eight characters in length containing at least one digit, one letter, and must not match the previous four passwords for that user or agent credential.
- Strong: User and agent passwords must be a minimum of eight characters in length containing at least one digit, one letter, one special character, and must not match the previous four passwords for that user or agent credential.
Very Strong: User and agent passwords must be a minimum of twelve characters in length containing at least one digit, one letter, one special character, and must not match the previous four passwords for that user or agent credential. | Note |
|---|
Special characters supported are the ASCII printable characters and they are: (space) ! " # $ % & ' ( ) * + , - . / : ; < = > ? @ [ \ ] ^ _ ` { | } ~ |
Permitted voice portal users can set the account password temporarily and force the users or agents to change the password on the first login or when the password is updated. If permitted voice portal users change the password for their own user account, they are not prompted to change the password. This feature is configurable at the client level and applied to both users and agents. User and agent passwords expire after a specified period. The timeframe is configurable at the client level, is set to 90 days by default, and applied to both users and agents. Password management will lock out users and agents after a number of failed login attempts. The allowed number of failed logins is configurable at the client level for users and agents. By default, both users and agents are allowed 5 failed logins. Passwords are encrypted for all users, meaning that passwords are not stored in clear text anywhere in the system including the database. This is configurable at the client level.
- SFTP site access:
- Users can upload campaign files or retrieve generated reports from their LiveVox SFTP site. LiveVox uses the SFTP protocol by default. If you require FTP instead, please contact Client Services - client-services@livevox.com.
- If utilizing the voice portal's integrated FTP Browser, a user's voice portal credentials are used (password requirements described above).
- If utilizing a 3rd party SFTP browser application, specific SFTP credentials provided by LiveVox are used. These credentials adhere to the following standards:
- SFTP usernames and passwords are case sensitive.
- SFTP passwords must be a minimum of eight characters in length and contain at least 1 digit.
- SFTP passwords do not expire.
- SFTP encrypts commands and data both, preventing passwords and sensitive information from being transmitted in the clear over a network.
Security SettingsUsers in Sysadmin role can manage LVP and Agent password security settings in the Security tab of the Client editor. Sysadmins have the option to configure the following for LVP users and agents: Password Expire Days -Set number of days for the password expiration. Applies to both users and agents. | Note |
|---|
When implementing a password expire period for the first timeor reducing the number of days in the current period, it is recommended that all agents be logged out to prevent any call interruption due to password expiration. In addition, if your portal uses any LiveVox Custom Applications (Scripter, for example) or you are unsure if you have integrated these types of apps, please reach out to your Account Management team before adding, removing or making any changes to the Password Expire Period as this may interrupt any active LiveVox Custom Applications. |
- Max Failed Login Attempts -Set number of password attempts after which the user or agent will be locked out. The value of Max Failed Login Attempts LVP and Max Failed Login Attempts Agent must be between 1 and 9. Zero, null, and characters are invalid.
- Browser Session Security -If selected, user will have to log back in any time the browser is closed.
Password Strength-Slide the arrow on the bar to select one of the following levels: Medium -Password must be a minimum of eight characters in length containing at least one digit, one letter, and must not match the previous four passwords. Strong -Password must be a minimum of eight characters in length containing at least one digit, one letter, one special character, and must not match the previous four passwords. Very Strong -Password must be a minimum of 12 characters in length containing at least one digit, oneletter, one special character, and must not match the previous four passwords.
Admin Set Passwords Are Temporary-If selected, then the system forcesthe users or agents to change the password on the first login or when the password is updated.Once they login with the temporary password, they will be asked to change the password.
Agent Desktop editor - General Tab
|