Specifications include, but are not limited to: These requirements describe the functionality available for system support staff to use when managing and configuring the operation of the system. In the descriptions below, ‘maintenance’ is defined as displaying in a screen the current records in a table, including their fields; with the ability, given proper system security permissions, to alter or delete field content. The deletion of an entire record from the system should occur only if business rules allow. System administrators or users who have been given the proper permissions will be able to manage and assign privileges to user groups, user accounts and/or assign user accounts to user groups. Privileges include access to the system and system functionality. PR0-SC-0010 The system shall contain a user maintenance function that allows business/IT users with system administration rights to maintain access and security roles of each user. PR0-SC-0020 The system shall provide authorized TDCI staff the ability to activate and deactivate a user account. PR0-SC-0030 The system shall provide authorized TDCI staff the ability to view specific user access rights and levels of security. PR0-SC-0040 The system shall provide the ability to require user confirmation prior to changes to user profile. PR0-SC-0050 The system shall provide the ability for a user to reset a forgotten password and the ability for a state user to assist with password reset. PR0-SC-0060 The system shall provide the ability for system users to change their password on demand. PR0-SC-0070 The system shall support double keying for password setting - password confirmation PR0-SC-0080 The system shall provide the ability to require confirmation of identity by answering security questions on changes to login information. PR0-SC-0090 The system shall support unique user identification. PR0-SC-0100 The system shall provide the ability to automatically log off users after a configurable inactivity period. PR0-SC-0110 The system shall provide the ability to lock a user account based on multiple failed logon attempts defined by TDCI staff...
