Skip to content
English
Contact us
  • There are no suggestions because the search field is empty.

Ripple Security Settings

Site Admins can adjust Ripple’s security settings to fit their organization’s needs. This document outlines the available customizable settings and how to manage them.

Modify Ripple Security Settings

Site Managers and Site Admins can modify Ripple security settings from the Site Admin menu at the top of the page.

  1. Navigate to Site Admin from the top menu.
  2. Select Security from the left menu.
  3. Modify Ripple security settings according to institutional policy or team needs. Changes are automatically saved.

Regularly review security settings to keep accounts compliant and protected.

Site Managers and Site Admins should follow their institution’s security policies and best practices as the default when customizing Ripple security settings.

General Security Settings

Setting Description Best Practices
Login Attempts

Limits the number of failed login attempts before an account is locked.

A Site Manager or Site Admin must unlock the user account once the limit has been reached.

Lock the account after 5 failed login attempts.


 
Simultaneous Sessions Controls whether a user can be logged in on multiple devices or browsers at once.

Only one active session. 

Inactivity Security Settings

Setting Description Best Practices

Automatic Logoff

 Defines session timeout after inactivity. 

Automatically log out after 15 minutes of inactivity.

Automatic Lock of Unused Accounts

Locks accounts that have not been logged into for a set number of months.

A Site Manager or Site Admin must unlock the account to allow users to reset their password.

Lock after 3 months. 

Password Security Settings

Setting Description Best Practices
Password Expiration Defines how often users must reset passwords.

Require users to update their password at least every 90 days.
Password Reuse Restriction Prevents reuse of old passwords. Prevent reuse of the last 5 passwords.
Minimum Length Sets required number of characters.

Minimum of 12 characters
Password Strength Enforces strength via zxcvbn algorithm. Ensures strong security.

Require at least a “moderate” strength rating.
Character Requirements Require numbers, symbols, etc.

Require all of the following:

  • at least one digit (number).
  • at least one symbol.
  • mixing upper and lower case characters.