This article contains information about the following advanced settings configurations:
- Staff Authentication
- Staff password requirements
- IP Restrictions (Optional)
- Audit retention
- Service naming
Note: These settings will only be visible/configurable for users with an Administrator (Admin) role in Clinician Nexus.
To set up and/or edit advanced settings:
- Click Settings from your left dashboard menu
- Click Advanced settings from the left submenu
Note: only admins can view and configure the settings described in this article.
Require two-factor authentication for staff login: Select ON or OFF to enable or disable two-factor authentication for staff login:
When enabled, staff will be required to complete a two-step verification process to log in. In addition to their password, they'll be required to provide a code sent to their mobile number. Click here to view the set up steps for your staff.
Staff Password Requirements
Password expires after: Create password expiration rule.
As an example, if you set your password expiration to 90 days, this means staff will be prompted to update their password every 90 days. If left at "0", user passwords will not expire.
Passwords can be reused after: Select the frequency in which the same password can be used over again
As an example, you can set passwords to be reused after 365 days, this means staff will not be allowed to reuse passwords that they've used in the last 365 days. If this is left empty or set to 0, staff will be allowed to use passwords they've used in the past at any time.
Idle Timeout: Select the number of minutes an idle logged in staff member will remain logged in before they'll be automatically logged out.
Set the password requirements for your organization.
- Minimum password character length
- Maximum password character length (optional)
- Minimum number of lowercase characters
- Minimum number of uppercase characters
- Minimum number of special characters
- Minimum number of numeric characters
If your organization does not have a policy for what is required, we recommend (at least) our default setting of:
- Minimum 6 characters
- At least one upper or lowercase character
- At least one numeric character
IP restrictions (Optional)
You can restrict which IP addresses your staff members can log in from. Staff will only be able to login from an IP address that fits the allowed IP restrictions. Child organizations will inherit these IP restrictions if they are configured at the parent organization level.
Note: they can also add their own, but they will be unable to delete parent organization IP restrictions.
Add Allowed IP ranges
Staff will only be able to login from an IP address that fits the allowed IP restrictions.
Add Blocked IP ranges
Staff will only be able to login from an IP address that does not fit the blocked IP restrictions.
Staff will only be able to login from an IP address that fits the allowed IP restrictions and does not fit the blocked IP restrictions.
Determine the amount of time that you'd like to retain data logs.
Determine whether staff will be allowed to add service by any name or if they should be required to select from a pre-determined list that you can set up in this section.
This is how services will appear for coordinators to add if you choose to require the list view: