Password Management
Insider strictly enforces password requirements to ensure security standards are met. These requirements are as follows:
Password Complexity
Passwords must be at least 8 characters long and include a mix of uppercase and lowercase letters, numbers, and symbols.
Password Reset
Multiple logins with the wrong username or password result in a security notification. In the event of such a security notification, Insider sends a temporary password reset token to the user's pre-registered email address if they click the "Forgot your password?" link. If needed, the user’s account can also be disabled manually.
Password Hashing
Insider hashes the end-user account passwords stored on their servers with a random salt.
Two-Factor Authentication (2FA)
Two-factor authentication enables you to add one more layer of security to your user ID besides a password, such as a smartphone or security device confirmation. The first authenticator is the user's password, and the second is the temporary security token. This security token is provided by an authentication application that you can download on your desktop or mobile devices. Two-factor authentication helps your account be safer than before.
Single Sign On (SSO)
Insider offers Single Sign-On (SSO) that allows you to access InOne Panel through Identity Providers (IdP) and an authorization system. You can grant/revoke access to your users and/or user groups in your IdPs, manage user roles in your IdPs, and enforce automatic logout from InOne when a user logs out of your IdP. Insider's SSO solution uses SAML 2.0, the latest version of the SAML protocol.