For security concerns, you want the password to be reset only after authentication (such as SMS or email verification) when you forget the password.
You may have set a simple password for login convenience and expect the platform to remind you to update the password regularly.
Enterprises with high-security levels have requirements for the complexity of user passwords, such as the inclusion of uppercase letters and symbols.
For security concerns, you do not want your current password to be the same as previous ones.
Passwords in the server datasets are often too simple or fail to meet enterprise security requirements during importing users or synchronizing users, and admins want to force users to change their passwords upon initial login.
For security concerns, platform users want the password to be modified only after authentication (such as SMS or email verification) when they want to alter their passwords.
If you have high-security requirements for the platform password system, you can go to System Management > System Setting > Login > Password Policy Setting and set requirements and restrictions for user passwords to enhance platform security.
Password policies will not take effect for users whose passwords cannot be edited in this system.
Do not configure the password policy settings for projects with custom login pages. The configuration items in System Setting > Login are not compatible with those included in custom login pages.
For example, if you enable Forced Initial Password Change, you cannot access the password modification page through the custom login page, resulting in login failure.
Log in to the FineDataLink system as the admin and choose System Management > System Setting > Login > Password Policy Setting, and set the authentication methods for resetting the password, as shown in the following figure.
The Forget Password function is described in the following table.
Bind the mobile phone number to the username, as shown in the following figure.
You can input mobile phone numbers in mainland China, Taiwan (China), Hong Kong (China), Turkey, South Korea, Japan, Singapore, and Malaysia.
For countries and regions such as Taiwan (China), South Korea, Japan, and Malaysia, there is no need to add the number 0 before the phone number or after the area code.
For details, see SMS.
The page is shown in the following figure.
1. Log out of the current account. There is a Forgot Password button on the login page, as shown in the following figure.
2. An identity verification dialog pops up. Enter the mobile phone number and the verification code, and click OK, as shown in the following figure.
3. Enter the new password and click Save, as shown in the following figure.
4. Click Log In Now or wait for automatic login after the password is changed successfully, as shown in the following figure.
If the entered phone number is not bound to a username, a prompt pops up saying "Account not found."
If the entered phone number does not receive the verification code while no error is reported, check whether the SMS account balance is sufficient.
You must set an email sender. Otherwise, the email cannot be successfully sent.
Log in to the FineDataLink system as the admin and choose System Management > System Setting > Mailbox, configure the sender account, and click Save, as shown in the following figure.
A system sender is selected by default during scheduled task configuration. You can also select other senders from the drop-down list.
1. The configuration steps may vary depending on the mail server. For details, see Mailbox.
2. After configuration, click Send Test Mail to check whether the email is available.
You must set an email recipient. Otherwise, emails cannot be sent to anyone.
Therefore, for users who use email for login verification, if their user information in the FineDataLink system is not bound to their email address, the email cannot be sent successfully.
Log in to the FineDataLink system as the admin and choose System Management > System Setting > Login > Password Policy Setting, and then enable Reset Password by Email, as shown in the following figure.
2. Enter the mailbox and the verification code in the pop-up identity verification dialog, and click OK, as shown in the following figure.
You can customize the update cycle and the reminder date after enabling Regular Password Update, as shown in the following figure.
The Regular Password Update function is described as follows.
Update Cycle: Enter the number of days manually (at least seven days) or select fixed days from the drop-down list. The month options in the drop-down list will be converted into days automatically (one month = 30 days).
If the value set in Update Cycle is less than or equal to that set in the reminder, the value in the reminder will be set to 3 by default.
The new and old passwords cannot be the same.
If Regular Password Update is enabled, the system will automatically judge whether the update date is going to be reached at your login. If the reminder condition is met, the system will send a platform message to you, prompting "The current password will expire in N days. Change your password as soon as possible." The page is shown in the following figure.
1. You can customize the password strength after enabling Password Strength Limit, as shown in the following figure.
The Password Strength Limit function is described as follows.
The password strength limit also takes effect for modifying passwords in Account Setting.
The password strength limit takes effect for any password modification in the system.
If the password entered at your login is detected to be unable to meet the strength requirements, the system will redirect to the password modification page.
The username is case-insensitive. Take the username admin as an example. If No Username is ticked, the password cannot include any form of admin, including ADMIN, Admin, and adMIN.
2. The system verifies whether the new password meets the strength requirements. Enter a password that meets the strength limit and click OK, as shown in the following figure.
If you enable Password Repetition Check (disabled by default), the password cannot be changed to one of the previous N passwords used before, as shown in the following figure.
The Password Repetition Check function is described as follows.
The N Value should be an integer between one and ten.
The current password is not counted as a previously used password.
If you (the admin) reset users' passwords, these passwords will be counted as previously used passwords. Historical passwords will not be emptied after a reset.
If Password Repetition Check is enabled and the new password triggers the repetition check, it will prompt "No historical password can be used." The page is shown in the following figure.
If you enable Forced Initial Password Change (disabled by default), you will be prompted to change the password at the first login after password initialization or reset, as shown in the following figure.
If the password entered at your login is detected to be the initial password, you will be redirected to the password modification page immediately after clicking login, as shown in the following figure.
If the correct username and the password entered on the login page trigger rules like Forbid Repeated Login with Same Account in Single Login, Regular Password Update, Password Strength Limit, and Forced Initial Password Change, you will be forced to change the password.
If you enable Password Change Authentication Method, you have to pass the authentication through SMS or Email before changing passwords on the login page, as shown in the following figure.
The Password Change Authentication Method function is described as follows.
If both authentication methods are enabled and both the mobile phone number and the mailbox are bound to the username, SMS is used by default.
If your login triggers the password change, only after passing the authentication through the selected method can you change the password and log in to the system successfully.
There is no authentication when you change the password at Account Setting.
You must set an SMS sender. Otherwise, SMS messages cannot be successfully sent.
Log in to the FineDataLink system as the admin, choose System Management > System Setting > SMS, enable Use SMS Platform, and log in through a FanRuan passport account with SMS service enabled, as shown in the following figure.
1. You need to enable the SMS service and top up the account balance for the bound FanRuan passport account; otherwise, the SMS messages cannot be sent successfully. For details, see SMS.
2. After configuration, click Send Test SMS to check whether the mobile number is available.
You must set an SMS recipient. Otherwise, SMS messages cannot be sent to anyone.
Therefore, for users who use SMS for login authentication, if their user information in the FineDataLink system is not bound to a mobile phone, the SMS cannot be sent successfully.
1. You can input mobile phone numbers in mainland China, Taiwan (China), Hong Kong (China), Turkey, South Korea, Japan, Singapore, and Malaysia.
2. For countries and regions such as Taiwan (China), South Korea, Japan, and Malaysia, there is no need to add the number 0 before the phone number or after the area code.
Log in to the FineDataLink system as the admin and choose System Management > System Setting > Login. Enable SMS in the Login Authentication Setting, as shown in the following figure.
During password modification, the identity authentication is shown in the following figure.
Therefore, for users who use email for password modification, if their user information in the FineDataLink system is not bound to their email address, the email cannot be sent successfully.
Log in to the FineDataLink system as the admin and choose System Management > System Setting > Login. Enable Email in Login Authentication Setting, as shown in the following figure.
If Password Change Authentication Method is disabled, you need to enter your previous password for authentication when changing the password.
1. You need to enter the correct previous password within five attempts. After you enter a wrong password for the first time, it prompts "Wrong password. The account will be locked after wrong passwords are entered for 4 more times."
2. If the previous password is entered incorrectly after five attempts:
Ordinary user
A prompt pops up, saying "You have input incorrect passwords too many times. Re-try it in 15 minutes or contact the administrator."
You (the admin) can help the ordinary user to change the password by referring to Resetting Password in User Modifying/Resetting Password. After that, the user can log in to the system with the new password.
Super Admin
A prompt pops up, saying "You have input incorrect passwords too many times. Re-try it in 15 minutes."
You can wait 15 minutes and try again, or change your password by referring to Resetting Password in Admin Modifying/Resetting Password.After that, you can log in to the system with the new password.
滑鼠選中內容,快速回饋問題
滑鼠選中存在疑惑的內容,即可快速回饋問題,我們將會跟進處理。
不再提示
10s後關閉
Submitted successfully
Network busy