Vonage Contact Center (VCC) uses two different password mechanisms to ensure that is secure.
In Configuration in the VCC Admin Portal, an admin user can configure the password policy for an account. . The number and types of characters that must appear in passwords determine the complexity.
Users can no longer log in using a personal identification number (PIN).
For more information about password policy, see Configuring password policy.
If a user tries to set or reset their password to a password that does not have the required complexity, an error appears and the user must change their password.
When a user logs in with an expired password, an error appears and the user must change their password.
Whenever a user sets or resets their password or logs in to ContactPad or the VCC Admin Portal, Vonage checks the password in an industry-wide database of compromised passwords. The database contains more than half a billion compromised passwords; a compromised password is one that has previously appeared in a data breach from another site or application.
Passwords that are easy to guess—such as password, 1234567890, secret—are most likely to be compromised. Even words that conform to a complex policy—such as Pa$$word!! and Password@1—may be compromised.
If a user tries to set or reset their password to, or tries to log in with, a compromised value, an error appears and the user must change their password.
also change their password for any other sites or applications that use it.
Users should be encouraged to use a password manager for both generating and storing a unique, random, and secure password for use in the VCC Admin Portal and ContactPad.
For more information about logging into VCC Admin Portal and ContactPad, and setting a password, see Logging in to the Vonage Contact Center Admin Portal and Logging in to ContactPad.