Users, Login, and Passwords

Password Requirements, Email Verification, and Forgotten Passwords

User Account Requirements

Usernames are Email Addresses

For Clear Impact software users, the user’s email address is their username. That email address must be able to receive messages from @clearimpact.com for the user to set or reset their password.

Scorecard, Control, and Compyle require user email verification, which means that:

• a link or security code is sent to the user's email
• the user clicks the link or copies the code
• the link takes the user to the password set/reset page or the user pastes the code into the reset password page.

*A valid email is recommended but not required Compyle survey form participants, anonymous responders, and other guest accounts.

Password Requirements and Options

Passwords must have:

• At least 8 characters 
• A lowercase letter (a, b, ..., z)
• An uppercase letter (A, B, ..., Z)
• A number (0, 1, ..., 9)
• A special character: ^ $ * . [ ] { } ( ) ? " ! @ # % & / \ , > < ' : ; | _ ~ ` = + - 
  
  

Password length may be from 8 to 256 characters, inclusively. No starting or ending blank spaces are allowed, but blank spaces can be used within a password. 

Forgotten Passwords

After five incorrect password entries in a row, users will have to wait one second to try a new password. The waiting period doubles with each additional unsuccessful attempt up to fifteen minutes.

• 5 wrong tries = 1 second waiting period
• 6th wrong try = 2 second wait
• 7th wrong try = 4 second wait
• 10th wrong try = 32 second wait
• 15th wrong try = 15 minute wait

Entering the correct password resets the counter and allows the user to access the system.

Clear Impact helpdesk staff will not be able to reset the incorrect password count/lockout timer any sooner than it will clear on its own. The attempt-invalid entry-pause process is an unchangeable feature of our user authentication system.