Security
|
|
|
|
|
The Security tab displays the security options set up for the credit union. Use the following links to learn more about the options in each section of the Security tab:
To access the Credit Union Profile - Security tab, under Administration on the Portico Explorer Bar, select Profiles. On the Profiles top menu bar, select System, and then select Credit Union. The Credit Union Profile window appears. Select the Security tab.
How do I? and Field Help
The following fields and checkboxes appear in the Security Information section on the Security tab:
|
Field/Check Box |
Description |
|---|---|
|
The number of minutes before the user session will time out. System default and maximum allowed is 15 minutes. |
|
|
If selected, the credit union has implemented strong passwords. Portico require that all user passwords meet the password requirements. |
|
|
The number of days before the user password must be changed. System default and maximum allowed is 90 days. With Fiserv Single Sign-In, Portico requires that users change their passwords every 60 days. |
|
|
The minimum number of hours required before a password can be changed. |
|
|
The maximum number of failed password attempts allowed. Required system default is 5 attempts. This number cannot be changed. |
|
|
If selected, users will be given the option to close an active session when attempting to log into another session. If this checkbox is selected and a user attempts to log into a new session while logged into an existing session, a message will appear. The user can select Yes to close the existing session and log into a new session. If this checkbox is not selected and a user attempts to log into a new session while logged into an existing session, a message will appear. The user must select OK, and then log out of the active session. The Close Other Active Session at Logon checkbox is automatically be selected. To clear the checkbox, you must be a member of the Portico – Profiles – Administrator security group or a credit union-defined security group with the Portico – System – Credit Union Profile – Maintain security permission. |
|
|
Employee Lockout |
If selected, the credit union uses Employee Lockout. Employee lockout limits online access to employee accounts to authorized individuals. This option is used with the Account Restriction field on the Contact Information tab. Activity on employee accounts will print on the 036 and 445 Reports. Must be selected if users belong to the Employee Security - User Has No Access security group or a credit union-defined security group containing the EmplSecurity - User Can Not View Any Employee Accounts permission. (Portico Host: 901 Transaction - EMP LOCKOUTS field) |
|
Enhanced Employee Security |
If selected, the credit union supports employee and restricted account security. |
|
Enhanced Override |
If selected, the credit union can monitor all transactions that are overridden by tracking which employee performed the override (via teller number) and which employee approved/authorized the override (via employee name). You can define override groups in Portico to help you enforce credit union policies regarding which employees at the credit union are authorized to approve an override. When defining an override group, you can also prioritize the list of employees authorized to approve overrides. Once override groups are defined, each employee/user must be associated to one or more override groups. |
|
If selected, the credit union uses Remote Override to let users send an override request to a remote user for approval without leaving their workstation or having someone personally review the transaction at their workstation. All the information needed to approve or deny the request, including a screen capture of the transaction, is sent to the remote user. The assigned users within an override group have the authority to remotely override a transaction for another user. |
|
|
The number of seconds before a remote override request will timeout. |
|
|
Indicates if the teller override authority option has been selected by the credit union. This option allows non-90 series teller IDs to perform transactions normally requiring a 90 series teller ID. Each non-90 series teller ID must have a teller-defined override code (Override Code field) and the types of transactions allowed (Authority group box) specified on the Teller Information window. The valid options are: N - Teller override authority option not selected Y - Teller override authority option selected. Override codes are displayed. X - Teller override authority option selected. Override codes are not displayed on selected screens. (Portico Host: 901 Transaction - TLR OVERRIDE field) |
Password Requirements
A user must change their Portico password every 90 days. The maximum failed attempts is 5. Portico requires that all user passwords meet the following criteria:
- Minimum of 9 characters.
- Maximum of 30 characters.
- Must use both upper and lower case characters.
- Must use both alpha and numeric characters.
- Must contain at least one of the following: ! @ # $ % ^ & * ( ) _ + -
- Cannot contain more than two repeating characters consecutively.
- Cannot contain your Portico login ID.
- Cannot contain the word Fiserv or any upper and lower case combination of Fiserv.
- Cannot contain the word password.
- Same password cannot be reused within the last 14 password changes.
Portico sends password expiration reminders to the user email address defined on the User - Update window beginning ten days prior to the user’s password expiration. Portico sends a reminder email daily until the user changes their password or until the user ID becomes inactive.
The following fields and checkboxes appear in the Fiserv Single Sign-In Options + Applications section on the Security tab:
|
Field/Check Box |
Description |
|---|---|
|
If selected, your credit union uses Fiserv Single Sign-In to sign in Portico and other applications. You must be a member of the Portico – Profiles – Administrator security group or a credit union-defined security group with the Portico - System - Fiserv Single Sign-in – Maintain security permission to turn on Fiserv Single Sign-In. |
|
|
The date when users must enroll in Fiserv Single Sign-In. Beginning four days before the mandatory enrollment date, the Remind Later button no longer appears on the Fiserv Single Sign-In dialog box. If you select Cancel or close the dialog box to bypass the required enrollment, an error message appears indicating that you must complete the Fiserv Single Sign-In Enrollment process to sign in Portico. |
|
|
Additional Comments |
Contains additional comments regarding Fiserv Single Sign-In. |
|
PorticoUsers |
Displays the applications you can access using your single sign-in credentials. The selected check boxes indicate applications in use by your credit union and enabled for Fiserv Single Sign-In. |
|
Select this checkbox to enable single sign-in access to Client Central from the Member Services menu on the Portico Explorer Bar in today's Portico and on the Explore menu in the Portico User Experience. Custom links to Client Central manually added by your credit union will not honor the single sign-in. Refer to the following Knowledge article for more information: KB0236886 - Portico - How to set up Portico to Client Central Single Sign In |
|
|
The system identifier you received from your card services representative. |
|
|
Select this checkbox to enable single sign-in access to Nautilus Essentials. |
|
|
Select this checkbox to enable single sign-in access to Reporting Analytics from the Resources menu on the Portico Explorer Bar in today's Portico and on the Explore menu in the Portico User Experience. Refer to the following Knowledge article for more information: KB0235991 - Portico - How to set up Portico to Reporting Analytics Single Sign In |
|
|
Select this checkbox to enable single sign-in access to Superior IRA from the Resources menu on the Portico Explorer Bar in today's Portico and on the Explore menu in the Portico User Experience. Refer to the following Knowledge article for more information: KB0235994 - Portico - How to set up Portico to Superior IRA Single Sign In |
|
|
The Org ID you received from your Superior IRA representative. |
|
|
Select this checkbox to enable single sign-in access to MessagePay from the Resources menu on the Portico Explorer Bar in today's Portico and on the Explore menu in the Portico User Experience. Refer to the following Knowledge article for more information: KB0235984 - Portico - How to set up Portico to MessagePay Single Sign In |
|
|
The URL you received from your MessagePay representative. |