The Security tab allows you to adjust the password and HTTPS settings - .

Figure 1 - The Panel Settings Security tab

The options are as follows:

• Password expiry days - specify how many days the password is to be valid after it has been changed. Use 0 to disable this functionality such that the password does not expire.
• Password history - specify that the new password must be different from the last X passwords used. This prevents the panelist merely using the same password over and over again. Use 0 to disable this functionality such that the same passwords can be reused.
• Minimum age - specify the number of minutes the user must wait after changing the password before they are allowed to change it again. Use 0 to disable this functionality.
• Minimum required length - specify the minimum number of characters (of all types) that a password must have. Use 0 to disable this functionality such that a password can be of any length.
• Minimum required non alpha characters - specify the minimum number of non alpha characters a password must have. This will force the panelist to use numerical and/or other characters in the password, thereby making it more difficult to guess. Use 0 to disable this functionality such that the panelist can use only alpha characters if so desired.
• Minimum required non alphanumeric characters - specify the minimum number of non alpha-numeric characters (for example #¤%& etc) that must be included in the password. Use 0 to disable this functionality.
• Minimum required uppercase characters - specify the minimum number of upper-case characters that must be included in the password. Use 0 to disable this functionality.
• Password similar to username - check the box if the password is to be validated against the username to ensure that the password and username are not identical. Leave the box unchecked to disable this functionality, thereby allowing the panelist to use their username also as their password.
• Enforce HTTPS access to portals - check the box to force the user to use HTTPS when accessing the portal.
• Panelist Unique Variable - specifies the variable that is to be used to uniquely identify a panelist, for example email or CustomerId. This will be the variable used as the username when the user logs in to the portal. The variable must be defined with the property Unique set to true.
• Allow the portals to be embedded within frames - check the box if you want to allow the portal to be embedded within another web site in an iframe. If this option is not checked, the portal can not be embedded in an iframe.
• Exclude fields - for improved protection of panelists it is possible to exclude specified data fields, for example Personally Identifiable Information (PII) from viewing and exports. You may wish for example to exclude email addresses from exports so that users cannot retrieve panelists' email addresses from any kind of data export from the panel or surveys linked to the panel. Write the field names into this field, using comma or semicolon to separate the field names if more than one field is to be excluded, and save the changes, to exclude the specified fields from all exports. Note that excluded fields are listed in the task log and in notification emails.
• Session timeout... - add a time in minutes to specify how long a session will be kept active before the panelist will need to log in again. If empty, the system defaults for session timeout will be used.

When you have made any changes, click Save to save them.