Best practices for administrator access
As a best practice, set the administrator’s initial password to a randomly generated string that meets the minimum password requirements, and require that the password is changed when the administrator first logs on, using the Change password next log on option.
Configure password policy settings for your account that require passwords to expire automatically after a set number of days, and that lock users out after a number of incorrect login
attempts.
Tip: For further security, enable two-factor authentication, requiring the administrator to use a supported authenticator app (such as Google Authenticator) to access the
portal. See Two-factor authentication in
the Web Security Cloud help.
For more information on securing administrator access, see Adding a contact in the Web Security Cloud help.