Corporate Password Policy
The company enforces a strict password policy to ensure the security and integrity of corporate systems and data. Below are the key elements of our password policy and guidelines for using Cisco Duo for Multi-Factor Authentication (MFA).
Password Policy
-
Enforce Password History
To prevent password reuse, the system will remember the last 10 passwords used by the team member. This ensures that users cannot reuse recently used passwords when updating their credentials.
-
Maximum Password Age
Passwords must be changed every 365 days. This ensures that all users regularly update their credentials for enhanced security.
-
Minimum Password Age
A password must be used for at least 30 days before it can be changed. This prevents frequent password changes that might compromise the effectiveness of the password history policy.
-
Minimum Password Length
Passwords must be at least 12 characters in length. This ensures that passwords are complex enough to resist brute force attacks and other security threats.
-
Password Complexity Requirements
Password complexity is enabled, meaning that passwords must contain a combination of uppercase letters, lowercase letters, numbers, and special characters.
By adhering to these guidelines, we aim to minimize the risk of unauthorized access to corporate systems and sensitive data.
Multi-Factor Authentication (MFA) with Cisco Duo
In addition to password policies, the company also enforces the use of Multi-Factor Authentication (MFA) to further secure user accounts. We use Cisco Duo as our MFA solution. This adds an additional layer of security by requiring users to authenticate their identity through a second method, typically a mobile device.
Steps to Install and Activate Cisco Duo
Step 1: Install the Cisco Duo Mobile App
-
For iPhone users:
- Open the App Store on your iPhone.
- Search for Cisco Duo Mobile.
- Click the Download button and wait for the app to install.
-
For Android users:
- Open the Google Play Store.
- Search for Cisco Duo Mobile.
- Click Install and wait for the app to download.
Step 2: Receive Duo Enrollment Email
• You will receive an email from the IT department with a Duo enrollment link. This is essential for linking your Cisco Duo app to your company account.
Step 3: Open the Enrollment Link
• Click on the enrollment link in the email. You will be directed to a web page that guides you through the setup process.
Step 4: Link Your Account to Cisco Duo
- On the web page, choose the option to use a mobile device for MFA.
- Scan the QR code displayed on your computer screen with your Cisco Duo Mobile app. To scan, open the Duo app and click on the ”+” sign in the top right corner, then select Scan QR code.
- Once scanned, your company account will be linked to the Cisco Duo app.
Step 5: Authenticate with Duo
• After linking your account, any time you log into your company systems, you will receive a push notification on your mobile device.
• Simply tap Approve in the Duo app to complete your login.
Troubleshooting Tips
• If you don’t receive the push notification, open the Duo app and manually refresh the request.
• Make sure you have a stable internet connection on your mobile device to receive the notifications.
• If you change your phone, you will need to re-enroll by contacting the IT department.
By following these steps, you’ll ensure your account has an added layer of security through Cisco Duo’s MFA. If you encounter any issues during the installation or activation process, please contact the IT Help Desk for further assistance.
This password and authentication policy ensures that we maintain a secure environment for company operations and protect sensitive data from unauthorized access.