Here is another summary of the new features we've deployed to the platform in the last few weeks.
 
The platform now supports a suite of security features related to logins. In any web-accessible system, it's critical to make sure hackers can't gain access to sensitive areas. At the same time it's important not to make life miserable for legitimate users when they log in. These features seek to balance these two goals.
 
For full details, please check out the documentation here: 
 
 
Here is summary of the features:
 
 - "Remember Me On This Device":
The ability for users to check a box to skip having to login more than once per week.

 - reCAPTCHA / "I'm Not a Robot": 
Prevents hackers from gaining access via brute force, and all legitimate users have to do usually, is simply click a checkbox.

 - "Forgot Your Password?" Process: 
Securely allows the user to reset their own password if they've forgotten it.

 - Password Rules: 
Flexible rules regarding what characters are required in new passwords created by users.

 - Lockouts After Repeated Failed Logins: 
The ability for the system to lockout hackers from a given user account if they fail to login multiple times in a row.

 - Unlocking a User Who Was Locked Out: 
The ability for employees to unlock a user's account.

 - Password Expirations: 
The ability for the system to require users to reset their password periodically.

 - Reusing Previous Passwords: 
The ability for the system to require users to use new passwords that were not used previously.

 - Restricting Logins for Specific Users to Specific IP Addresses: 
The ability for the employees to restrict users from login in, except from specific IP addresses they define.
 
Almost all of these features are configurable and may be enabled and disabled for Customer accounts.