Configuring Blueworks Live authentication

As the account admin, you can configure Blueworks Live to enable your users to sign in using Blueworks Live authentication, based on a user ID and password.

In the Admin page, go to Settings > Security tab. In the Authentication section, click the Blueworks Live authentication tab and enable the setting.
Tip: When Blueworks Live authentication is enabled, you can go to the User management tab and look at the Authentication column to see which users are required to authenticate using Blueworks Live authentication.

Setting password strength

You can set Medium or High security for the password strength. A High security level is strongly recommended.

The following rules apply:
  • For all passwords, the user must enter the current password to change their password.
  • The user is locked out after three failed login attempts until an admin unlocks the user's access. If the user belongs to multiple accounts, all the accounts are locked out. The admin for each account must unlock access to that account.
  • If the password strength is set to Medium, each password:
    • Must contain at least 8 characters.
    • Must contain at least one number and one letter, for example jsmith3a.
    • Must not contain three of the same character consecutively, such as jsmiaaa3.
    • Must be changed every 90 days.
    • Must not be the same as the user's email address, such as jsmith@company.com, or the reverse of the user's email address, such as com.ynapmoc@htimsj.
    • Must not contain the user's full name or any part of the user's full name, such as smith.
    • Cannot be reused if it was used as one of the last 10 passwords.
    • Cannot be changed again within 24 hours.
  • If the password strength is set to High, each password:
    • Must contain at least 10 characters.
    • Must contain at least one uppercase letter and one lowercase letter, for example !jWsmith23.
    • Must contain at least one number and one special character, such as %, >, or ?. For example, !jWsmith23.
    • Must not contain three of the same character consecutively, such as !jWsmaaa23.
    • Must be changed every 90 days.
    • Must not be the same as the user's email address, such as jsmith@company.com, or the reverse of the user's email address, such as com.ynapmoc@htimsj.
    • Must not contain the user's full name or any part of the user's full name, such as smith.
    • Cannot be reused if it was used as one of the last 10 passwords.
    • Cannot be changed again within 24 hours.