Security Context Properties

The Security context properties control the validation/authentication and change password functions of the system.

The following table explains the IVR Security context properties:

Table 1. Security Context Properties
Property	Description
PASS > PassInfoServer > Security > ValidateClient	If selected, a valid client and password must be provided before any function can be performed. This should always be enabled for Trapeze applications.
PASS > PassInfoServer > Security > Check Valid Email	If selected, the system checks if the client's email address has been validated.
PASS > PassInfoServer > Security > PasswordMode	Allows you to choose the password the system uses when validating the client's password: Either Password - If selected, when the user enters either a correct Web password or IVR password, the login is successfully completed. IVR Password Web Password
PASS > PassInfoServer > Security > DisplayDisabled Features	If selected, users are able to see the feature on the interface but are not allowed to use it.
PASS > PassInfoServer > Security > EnforceNonBlank Passwords	If selected, clients must enter non-blank passwords when performing any function.
PASS > PassInfoServer > Security > EnablePasswordChange	If selected, clients are permitted to change their passwords. There is no service checking of this property, therefore, the agency must have markup that contains a check for this property.
PASS > PassInfoServer > Security > IgnoreInactiveClientRecords	If selected, client records that are flagged as inactive are treated as though they do not exist. An invalid login and password message appears. If not selected, a message indicating that the client is inactive appears.
PASS > PassInfoServer > Security > Expressions > ValidateClientExpression	Logic used to determine if the client can log on.
PASS > PassInfoServer > Security > IVR > Password History	Number of previous passwords that the IVR system stores. Users cannot reuse the passwords that the system has stored. If set to 0, there is no password history enforced; users can reuse their previous passwords.
PASS > PassInfoServer > Security > IVR > Numeric Passwords Only	If selected, only numeric passwords are allowed.
PASS > PassInfoServer > Security > WEB > Enable Reset	If selected, users are allowed to reset their passwords.
PASS > PassInfoServer > Security > WEB > Exclude Characters	Sets the characters that can not be included in the password, for example: &.
PASS > PassInfoServer > Security > WEB > Minimum Password Length	Sets the minimum number of characters for the WEB client password.
PASS > PassInfoServer > Security > WEB > > Password Content	Allows you to choose the type of characters that can be included in passwords: 0 - None: No restrictions, can be numbers or letters only or a combination of numbers and letters. 1 - Numbers only (numeric) 2 - Combination of numbers and letters; with at least one number and one letter of the alphabet (alphanumeric).
PASS > PassInfoServer > Security > WEB > At least one special character	WEB password should include at least one special character.
PASS > PassInfoServer > Security > WEB > Password History	Number of previous passwords that the WEB system stores. Users cannot reuse the passwords that the system has stored. If set to 0, there is no password history enforced; users can reuse their previous passwords.
PASS > PassInfoServer > Security > WEB > Minimum Password Length	The minimum length that the client web password can be.
PASS > PassInfoServer > Security > WEB > PasswordResetTimeThreshold	Number of days that a password is valid after which the user must reset it. If set to 0, the password never expires.