Set Security Policy

The Security Policy section lets you to set various password and login rules that apply to all users in your practice. These settings are important for proper compliance with the patient privacy regulations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA). Tebra automatically applies a basic set of defaults that meet the needs of most companies, however, System Administrators can change settings to fit the needs of the practice:

Access Security Policy Hover over the User icon and click on Practice Settings. The Practice Settings page opens. Click Tebra. Additional setting options expands. Click Security Policy. The Security Policy page opens.

Set Security Policy Minimum password length: By default, 8 characters is selected. To update the minimum number of characters required for a password, click the drop-down menu and select a different length (8–15). Character Requirements: By default, all options are selected. To remove a character class required for passwords, click to clear the option. Password expiration: By default, 90 days is selected. To update the number of days a password will be valid, click the drop-down menu and select 30, 60, 90, or 120. Upon expiration, a user will be prompted to set a new password. Password reuse: By default, 5 reuses is selected. To update the number of unique passwords that must be created before a password can be reused, click the drop-down menu and select 5, 10, or 15. Login attempts: By default, 3 attempts is selected. To update the amount of times a user can fail to log in before they are prompted to reset their password, click the drop-down menu and select 3, 4, 5, or 6. Click Save when finished.