Authentication

---

Application authentication within eCollections is based on an industry-standard multi-factor approach. Users are required to provide a Username and password “something they know” as well as “something they have” which can include things like:

1. The unique ID of a Network Interface Card (NIC) in their computer.
2. An RSA key delivered via device or SMS text.
3. A USB dongle.   

eCollections can accommodate any combination of factors to ensure that only known and permitted users access the system. After four failed login attempts a user is locked out of the system. eCollections supports the most stringent password policies including requiring strong passwords, setting minimum and maximum lengths and ages, and preventing password re-use.