Enabling a Password Policy
As an Enterprise feature, Hosted~FTP~ provides an advanced password policy feature that adds an additional security measure to protecting your user accounts. This is a required feature for following compliancy regulations such as CJIS, and meets the NIST compliancy guidelines as best practices to HIPAA data protection standards. Using a hierarchy system, it can be enforced on an account, group, and individual user level.
Enforcing a password policy on the account level

- As the account administrator go to your Setup tab
- Scroll down to the Account-Level Options and locate the Enforce password policy for all users option
- Enable the option by checking Customize and then selecting Configure you can customize the password policy in detail
- Next select how you want to enforce the rule: All users in the account and to allow separate rules on a group/user level
- Selecting View will let you see the current active password policy in place
Enforcing a password policy on the group level
Note: Group level is only enabled when allowed by the account administrator (see above)

- As an administrator go to the Users tab > Group tab
- Click on the Group you would like to edit settings for
- Locate the Enforce password policy for all users in group option
- Enable the option by checking Customize and then selecting Configure you can customize the password policy in detail
- Next, select how you want to enforce the rule: All users in the group and to allow separate rules on a user level
- Selecting View will let you see the current active password policy in place
Enforcing a password policy on an individual user
Note: User level is only enabled when allowed by the account administrator (see above)

- As an administrator go to the Users tab and select the user
- Scroll down to the user’s options and locate the Enforce password policy for this user option
- Enable the option by checking Customize and then selecting Configure you can customize the password policy in detail
- Selecting View will let you see the current active password policy in place