Advanced security

OnceHub security features provide advanced account security and data protection. Options include strong password policies, two-factor authentication, automatic lockout after multiple failed login attempts, and automatic session timeouts. These features allow you to control account security and comply with your organization's security requirements.

  • Two-factor authentication

    Two-factor authentication adds extra protection to your OnceHub account by requiring entry of a one-time token in addition to your user name and password. The token is a six-digit verification code sent as an SMS to your verified mobile number. With two-factor authentication, even if someone knows or tries to guess your password, they would still be unable to gain access to your account.

  • Password policies

    Using a strong password is an important safety measure that protects your account from unauthorized access. By default, all passwords in ScheduleOnce must be at least six characters long and include at least one lower case letter and one number. Administrators can enforce stricter password policies by increasing the minimum character length, strengthening the complexity with more character group requirements, and shortening the password expiration timeframe.

  • Account lockout

    Account lockout provides an additional layer of security for your ScheduleOnce account. When this feature is enabled, accounts will be automatically locked after multiple failed login attempts. The lockout criteria, which includes the number of unsuccessful login attempts and the timeframe for counting unsuccessful login attempts, can be defined by an administrator. Suspended accounts can be easily unlocked by an administrator, giving you full control.

  • Short sessions

    Short sessions is a security feature that helps protect your ScheduleOnce account to a greater degree. If you share your device with other individuals or work in a busy office, leaving your account logged in and unattended can lead to unauthorized access. With short sessions enabled, users will be automatically logged out of their account after 30 minutes of inactivity. This significantly reduces the risk of your account being compromised and allows you to enforce your organizational security policy.