Domain Security Policy

Dayforce personnel can use the Domain Security Policy page to review or change the default domain security policy. These are the minimum security policies for all organizations in Identity Access Management. Organizations may change their own security policies, within the guidelines of these domain security policies, on the Organization Details page.

Contents

Top

The domain security policy sets the minimum security for all organizations. Only Dayforce personnel can update the domain security policy.

An organization can change their own security policies to meet their needs, as long as it isn't weaker than the default domain security policy. You can change the organization's security policy settings on the Organization Details page.

Each domain security policy setting has a minimum, default, and maximum value. If you change these settings,

  • The minimum number must be lower than the maximum number.
  • The default number must be equal to the minimum number or the maximum number, or between the minimum and maximum number.
The minimum, default, and maximum numbers for the default domain security policy with click-able links
Setting Minimum Default Maximum
Failed Password Attempt Window (Days) 0 30 180
Failed Password Attempts 3 3 6
Failed Secret Answers Attempts 3 3 5
Maximum Password Age (Days) 10 90 180
Minimum Password Age (Days) 1 1 1
Minimum Password Length 7 7 24
Number of Secret Questions 5 5 15
Security Image Keyword Length (Characters) 8 8 40

Session Timeout (Minutes)

15

30

60
Top

  1. To open the Domain Security Policy page, in the navigation panel, click Administration , and then click Domain Security Policy.

  2. For each value, enter the minimum, default, and maximum value for the security policy item.

  3. Click Save.

Related resource