Since cyber security is a growing concern for any institution OPS-COM will be upgrading security to support strong password policies for organizations.
As of January 25, 2017, passwords will be encrypted to ensure highest level of security protecting content. The new upgrade will mainly affect users and administrators. By default, the password improvements will be turned off and will require your institution to acknowledge the change and implement them. This update will remove passwords being emailed in plain text,
password resets with or without user knowledge by administrators, passwords being easily copied or viewed and concerns about users using the same password across multiple systems.
Security enhancements available January 25, 2017
Prevents administrators or managers from viewing passwords by storing them using hashed and salted encryption. Administrator accounts can set passwords but will no longer be able to view them.
Secure Password Delivery Modes
Instead of sending new passwords via unsecured email, users who have lost or forgotten their passwords will receive one-time use links that will direct them to a secure page where they can create new passwords.
Admin Account Reset
If a password was changed verbally, the account reset feature will require the user to change their password the next time they login.
We are also implementing improvements to the roles and permissions tool. The upgrade will allow primary admins to create custom roles that can be shared for similar employees while being able to customize individual admins by adding specific permissions regardless of assigned roles. Once implemented there will be no change in your current admin role setup. However, the new model should be examined with your unique working environment to make sure the proper roles have the correct permissions for increased system security.