Set Up Password Requirements

Field	Description
Require Alphabetical Characters	Select this check box to require the use of both letters and numbers in a user password. No special characters such as & or # would be allowed.
Require Numeric Characters	Select this check box to require the use of at least one numeric character in a user password.
Require Mixed Case	Select this check box to require the use of upper and lower case characters in a user password.
Require Punctuation	Select this check box to require the use of punctuation in a user password. Users will be able to use any of the following symbols in the password: `! " ' ( ) , - . : ; ? [ ] / \`
Do not allow common dictionary words within password	Select this check box to ensure that the letters used in the password do not spell any common words. Note: A password is considered a "common dictionary word" when it is one of the words found in the `common_word` column in the table called `password_dictionary`. Contact NextGen Support for assistance.
Do not allow any part of user full name within password	Select this check box to ensure that no part of the user’s full name is used in the password.
Minimum password length	Enter the lowest number of characters permissible for passwords (6 to 32 characters).

Field	Description
Password expires	Select this box if you want the user password to have an expiration date.
Number of days password is active	If the Password expires check box is selected, enter the number of days (1 to 1000 days) that the password remains active. This setting updates the password expiration date on the General tab for all users. For more information about the user password fields, see the steps for setting up users.

Field	Description
Deactivate user due to inactivity	Select this box to deactivate the user due to lack of system usage.
Inactive nbr of days that deactivates user	If the user can be deactivated due to inactivity, enter the number of inactive days that will prompt deactivation (1 to 500 days).

Field	Description
User passwords are not allowed to repeat	Select this box to indicate that user passwords cannot be reused.
Limit of passwords that cannot repeat	If user passwords can be repeated, enter the number of previous passwords that are not allowed to be used again.

Field	Description
Number of invalid login attempts	Use the arrows to set a number for the maximum number of consecutive login attempts users can make. If you set the number to zero, there is no limit.
Deactivate user after failed login attempts	If you entered a number of one or greater for the Number of invalid login attempts, select this check box to deactivate a user's Login ID when a user has reached the specified number of invalid login attempts.

System Administrator Help

Deactivate a User

Deactivating a user removes the user from all groups that he or she is a member of. There are three methods for deactivating users: You can manually deactivate users. Users become automatically deactivated after a specified number of failed login attempts. For more information about the settings, see Restrict Unsuccessful Login Attempts. Users become automatically deactivated when he or she has not logged onto any of the NextGen applications in a specified period of time. For information about setting the deactivate period, see Inactive User Options section in Password Requirements. To manually deactivate a user, Select the user you want to deactivate, right-click the user, then select Deactivate. From the main menu, select Edit, then select Deactivate A message warns you that if you deactivate the user, the user is also deactivated in all other user groups that he or she is assigned to. Select Yes. The user is removed from all groups that he or she is a member of within all the <Compa

System Administrator Help

Restrict Unsuccessful Login Attempts

You can limit the number of consecutive unsuccessful login attempts that users can make and indicate whether or not users are deactivated when they reach the limit. The settings apply to user ID and password login attempts. If a user exceeds the limit for invalid login attempts, the login window closes. If the password settings specify that the user ID becomes deactivated when the invalid login limit is reached, then the user cannot log in again until the user ID is reactivated. Only a system administrator can reactivate user IDs. See, Reactivate Users. To restrict unsuccessful login attempts, on the View menu, select Password Requirements. The Password Requirements window appears. In the Number of invalid login attempts field, use the arrows to set a number for the maximum number of consecutive login attempts users can make. If you set the number to zero, there is no limit. If you want to deactivate users when they reach the specified number of failed login attempts, select the Deacti

System Administrator Help

Password Security Options

You can enhance system security at the enterprise level by configuring password settings with the following criteria: Alphabetic, numeric, or punctuation characters Length of password Common dictionary words within passwords Part of user’s full name used within password Number of days before password expires Note: You can also change the password expiration date for individual users. A password expiration date set at the user level overrides the enterprise-level setting. Number of times password can be repeated Number of days before user is deactivated for inactivity Set Up Password Requirements Restrict Unsuccessful Login Attempts Reset Passwords

Mirth® Connect by NextGen Healthcare User Guide

Password Requirements

The following properties can be set in mirth.properties to enforce requirements on user passwords: Property Default Value Description password.minlength 0 Minimum password length, 0 for no minimum. password.minupper 0 Minimum uppercase characters, 0 for no minimum. password.minlower 0 Minimum lowercase characters, 0 for no minimum. password.minnumeric 0 Minimum numeric characters, 0 for no minimum. password.minspecial 0 Minimum special characters, 0 for no minimum. password.retrylimit 0 Maximum number of times a user may retry a failed login, 0 for no maximum. If specified, the lockout period must be specified as well. password.lockoutperiod 0 Amount of time (in hours) to lockout user when the retry limit has been exceeded, 0 for no lockout. password.expiration 0 After this amount of time (in days), passwords will expire. password.graceperiod 0 If user's password is expired, the amount of time (in days) to give the user to change password after the next login. password.reuseperiod 0 Th

Mirth® Connect by NextGen Healthcare User Guide

Add/Update a User Account

When creating a new user or editing an existing user, a panel similar to the one provided below appears. New User Dialog Sample Edit User Dialog In general the fields available on the New User and Edit User dialogs are the same as the columns displayed in the Users Table. If you are creating a new user: When creating a new user, the Username, New Password and Confirm New Password fields are required. Note: The value in both password fields must match exactly. The Username can be changed on this dialog, however, the new username must be unique. A username that currently exists in the Users Table cannot be reused. If you are editing existing user information: When editing an existing user, the Username field is required. Note: The Username can be changed on this dialog, however, the new username must be unique. A username that currently exists in the Users Table cannot be reused. Parent topic: Users Tasks

System Administrator Help

Orders Group Universal Preferences

There are a number of Universal Preferences that can be defined in the System Administrator application that control how items in LabAssign display and function. The following lists the Orders Group Universal Preferences. Preference Description Adult Immunization Schedule Includes the web link to the CDC site, which lists the Adult Immunization Schedule. If the CDC changes the web link, you can manually update this link. Catch Up Includes the web link to the CDC site, which lists the Immunizations Catch Up schedule. if the CDC changes the web link, you can manually update this link. CDC NDC Crosswalk Includes the web link to the CDC site, which lists the NDC Lookup Crosswalk (the lookup table where the Unit of Use and Unit of Sale NDC are mapped to each other). CPOE Search API URL Includes the web link to the Amazon Web Services™ (AWS) that performs the search operations for Computerized Physician Order Entry (CPOE) from the Order Search Bar in a patient's chart in NextGen® Enterprise

Set Up Password Requirements

Recommendations

Deactivate a User

Restrict Unsuccessful Login Attempts

Password Security Options

Password Requirements

Add/Update a User Account

Orders Group Universal Preferences

Deactivate a User

Restrict Unsuccessful Login Attempts

Password Security Options

Password Requirements

Add/Update a User Account

Orders Group Universal Preferences