Account & Billing
      Back to home
      1. Knowledge Base
      2. Account & Billing

      Manage Security Policies

      Dedupely has designed a range of proactive measures, from enforcing two-factor authentication (2FA) to managing inactive sessions and whitelisting IP addresses.



      1. Recommendations for Account Security Enhancement:

        • Enable Enforced 2FA: Implement two-factor authentication (2FA) to add an extra layer of security to account logins.
        • Enable Password Expiration: Ensure passwords expire periodically to mitigate the risk of unauthorized access.
        • Keep Password Expiration at 90 days or less: Set a policy where passwords must be changed every 90 days or less to maintain security.
        • Increase Minimum Password Length to 15: Require users to create passwords of at least 15 characters to improve password strength.
        • Enable Close Sessions When Inactive: Automatically log out inactive users to prevent unauthorized access in case of prolonged inactivity.

      2. Password Policies:

        • Minimum Password Length of 12: Users are prompted to follow a password policy requiring a minimum password length of 12 characters.
        • Passwords Expire After Never: Passwords will not expire unless the policy is modified.

      3. Enforced 2FA:

        • Ignored for Google or Microsoft Logins: Users logging in with Google or Microsoft accounts will not be prompted for 2FA.

      4. Inactive Sessions Management:

        • Close Sessions When Inactive: Automatically log out users after a period of inactivity to reduce the risk of unauthorized access.

      5. IP Whitelist:

        • Whitelist IPs/CIDR Only: Allow access only from specified whitelisted IPs or CIDR ranges, blocking all other connections for added security.

      6. SSO and Directory Sync:

        • Login via SSO from Okta, 0Auth, etc.: Enable single sign-on (SSO) for login from Okta, 0Auth, etc., to streamline access and enhance security.
        • Sync with Microsoft AD and Google Workspace: Synchronize user accounts and data with Microsoft Active Directory and Google Workspace for centralized management.
        • Join Waiting List for SSO Development: Opt to join the waiting list for the development of SSO functionality to further enhance authentication and access control.

      Feel free to check out the rest of the articles and if you have any questions or doubts, feel free to contact our customer service support.