NetComm understands the importance of security and privacy of your data. Our Beacon SaaS solutions are FedRAMP Certified and built on the highest cloud security standards.
We’ve outlined some best practices to help.
Strong Password Settings
By default, Beacon requires strong, secure passwords compliant with industry standards. The current requirements are:
A password that is at least 14 characters long.
A password must include one uppercase letter, one lowercase letter, a number, and a special character.
A Password automatically expires in 60 days.
Prevent password reuse from the past 24 changes.
The password requirements cannot be modified.
Multi Factor Authentication (MFA)
Beacon requires a secondary factor as poart of the login process. Although this process defaults to a unique, time-sensitive 6-digit code to the verified email address, we strongly recommend changing the method to a time-based one-time password (TOTP) application, configurable in the user profile.
User Lockout
Beacon has the following Lockout defaults:
The lockout threshold is 3 failed attempts within 15 minutes.
The lockout expiration time is 30 minutes.
These settings cannot be modified.
SAML Single sign-on (SSO)
Single sign-on (SSO) gives owners a way to control and secure access. If SAML SSO is configured Beacon redirects the user to your IdP to authenticate. After successful authentication, your IdP redirects the user back to Beacon. SAML SSO can be enabled by request.
Implement a Least Privilege Administrative Model
The least priviliegeprivilege access infrastructure only gives users access to the company resources that they need to successfully do their daily job. We recommend reviewing users and roles regularly to ensure users only have the appropriate permissions.