With the new authentication solution that has been introduced at PRISMA, new rules concerning password and token have come into place.
Things to keep in mind when completing the setup of your account:
- The password must be at least 16 characters long and it should contain at least 1 number, 1 lower case letter, 1 upper case letter, and 1 special character (cannot contain the 'PRISMA' word or your company name).
- Passwords are checked against known leaked passwords. Previously leaked passwords will be denied access.
- Multi-factor authentication is required.
- Five failed sign-in attempts are allowed. After that, temporary lockouts start with exponentially increasing times starting at 1 second and doubling after each failed attempt up to about 15 minutes. Attempts during a temporary lockout period are ignored.
After the temporary lockout period, if the next attempt fails, a new temporary lockout starts with twice the duration as the last. Waiting for about 15 minutes without any attempts will also reset the temporary lockout.