Enhanced Password Security Implemented In Blackbaud NetCommunity Service Pack 4. 7484

Enhanced Password Security Implemented In Blackbaud NetCommunity Service Pack 4.

Published

In the latest Blackbaud NetCommunity Service Pack 4, some new password requirements have arrived for all users. Please check them out below.

In our latest releases we have tightened Password complexity requirements for online supporters in a number of ways:

Blackbaud NetCommunity Release Notes

New Password Requirements
  1. Minimum length has increased from 8 to 12 characters.
  2. Passwords must include:
    1. Both numbers and letters
    2. At least one special character (#/$/%/&/@, etc.)
    3. Uppercase and lowercase letters
  3. Passwords cannot include the registrant's name(s), user ID, username, or organization name
  4. Passwords cannot match any of the last six passwords
NOTE: If an existing user has a password that does not meet the new criteria, they will be prompted to reset their password before they can continue.

You may wish to customize the User Login part Helplet to expand on these new complex requirements and direct your user’s expectations.

35cecf07fa18c3c12a6cea00625d3a4f-huge-sc

Password Expiry
  1. Password will be shown as expired when:
    1. The users existing Password is not complex enough.
    2. The users Password has been expired due to the following:
      1. In SP4 and SP27, we have increased the minimum expiry period to 90 days and the maximum to 365 days. If your current password expiry duration is set greater than 365 days, the system will consider passwords to be expired.
      2. By default, if no duration is currently set, expiration will be 90 days.
      3. You can increase this time limit on the web.config file up to 365 days. Please refer to Product release notes on how this is achieved.
If you are hosted by Blackbaud and wish this expiry period to be amended, please raise a ticket with Customer Support.

User Experience
If a user’s password has expired, they will be shown the following:
75fbdb07d96884c03e590d3649aed3d5-huge-sc

Note – Text in Black font is the customizable Helplet and Text in Red font can only be changed via Java Script.
On selecting “Click here” the website will navigate to a login screen, and the user will have to enter their existing credentials and click on Login.
ab911e44081479d8394cc10a024c02e7-huge-sc

They will then be navigated to the “Change Password” screen and can change their password ensuring adherence to the complexity requirements which are indicated:
509ddf86e735664b69a4c3811e3cc471-huge-sc
News ARCHIVED | Blackbaud NetCommunity™ Blog 03/03/2021 10:44am EST
Added by Mike Rusche
  

Leave a Comment

2 Comments
Jeannie Goings Jeannie Goings May '21

Agree with Eric.

Eric Baerg Eric Baerg Mar '21
It is off-putting/disconcerting for our users to be redirected from our branded website which says nothing related to the words "Blackbaud" or "NetCommunity" to a password reset screen that has those words and looks different and says nothing related to our branded website.  It looks like a bad phishing attempt. ?

Share: