In this article, we’ll run through how you can enable users to sign into their program with their email address and password. When this is enabled, users will be asked to create a password during the registration process, allowing them to sign in to the program using their chosen email address (username) and password.
How can username & password be enabled?
To enable it, log into Reward Manager, click on the Integrations tab on the left, and under the ”Explore” tab you will see username & password.
If you don’t have access please speak with your Client Success Manager or a member of the Client Support team who will assign your permissions.
Select the integration and turn it “On” using the toggle button.
How secure is it to enable username & password?
As a short answer – extremely. All passwords are secured through hashing and are never shared with the member via any method of communication. Find out more on what other security options are available here.
What other options are available to enhance the security of using local credentials?
When setting up the integration, there are several options to enhance the security aspects of the locally held credentials. These are further explained below and could be found under Security in Reward Manager.
If you don’t have access to this, please speak with your Client Success Manager or a member of the Client Support team who will assign your permissions.
If this option is selected, all passwords must contain at least one uppercase, one lowercase and one digit or special character. This increases the complexity of the passwords and reduces the risk of them being susceptible to attacks such as Dictionary attacks.
Minimum Password Length
You can select a minimum password length for all users.
If this option is selected, employees cannot re-use any of their last seven passwords.
If this option is selected, employees will be prompted to change their passwords every 90 days.
Send Password Reset Instructions
Search for members and dispatch a password reset instructions email.
How can members recover their passwords if forgotten?
If an employee has lost or forgotten their password, they can use the “Account Recovery” section to recover their account. The Account Recovery section can be found on the main landing page or by typing “/Authentication/Recover/Password” after your program’s URL – https://[YOUR_PROGRAM_URL]/Authentication/Recover/Password.