Policy Settings

The following table lists the Policy settings for the decoder:

Password Policies

Policy Setting	Default	Description/Values
Minimum password length	6 characters	Type in the minimum password length (from 6-40 characters). Note Passwords can be up to 80 characters.
Password quality	Basic	Select the required password quality; works in conjunction with Password requires at least below: Basic: Sets the minimum password length as the only requirement to accept a new password. Strong: Adds more strict requirements to the password structure. Checks for minimum length as well as other criteria such as minimum number of required upper case characters, digits, and symbols.
Password requires at least	0	(Password quality must be Strong) Specify the minimum required number of: Uppercase letters Digits Symbols The range is from 0 to 40 for all 3.
Remember Last	5	(Password quality must be Strong) This option determines the number of unique new passwords that must be associated with a user account before an old password can be reused. The range is from 5 to 500.
Password expiration	Disabled	To enable Password expiration, check the checkbox.
Change password after	N/A if Disabled -------------- 90 days if Enabled	(Password expiration must be enabled) Type in the number of days after which users must change their passwords (from 1-180 days).

Session Policies

Policy Setting

Default

Description/Values

Auto Logout

Disabled

To enable Auto Logout, check the checkbox.

This configures the Makito X to automatically log the user out after a specified period of idle time. Systems that are left logged on may represent a security risk for an organization. If the user has been inactive for longer than this period of time, he/she will be automatically logged out and redirected to the Sign-in page.

Logout when idle for

N/A if Disabled
--------------
15 minutes if Enabled

(Auto Logout must be enabled)

Type in the maximum length of time the system may be idle before the user will be logged out (from 1 - 1440 minutes).

Cryptography Policies

Policy Setting	Default	Description/Values
Compliance	None	Specifies the required cryptographic compliance, either: None FIPS 140-2: Applies cryptographic modules accredited under the Federal Information Processing Standard (FIPS) Publication 140-2. NDPP v1.1: Activates cryptographic security to a level compliant with the National Information Assurance Partnership (NIAP) Network Device Protection Profile, Revision 1.1. SP800-52 Revision 1: Applies cryptographic modules accredited under the National Institute of Standards and Technology (NIST) Special Publication 800-52, Revision 1. Note Either selection will reinforce security for all management functions of the decoder in terms of cryptography. This setting will take effect upon the next reboot.
TLS Versions	TLSv1.2, TLSv1.1, TLSv1.0	Specifies which TLS (Transport Layer Security) versions are accepted from the HTTPS client. TLSv1.2 TLSv1.1 TLSv1.0 SSLv3 Note SSLv3 can be enabled only if Compliance is set to None. At least one TLS version must be enabled.