BAS has processes to authenticate all users of the MyEnroll360 application. When a user attempts to access MyEnroll360, the user must complete a logon process to authenticate their credentials and control their access to individual applications within the system access.
The MyEnroll360 interactive logon process confirms a user's identification to enter and use MyEnroll360 applications. Regardless of a user’s MyEnroll360 roles and responsibilities, all users are required to enter their login credentials that include a User Name and Password.
MyEnroll360 will lock a user’s account and prevent further logins when the user attempts to login multiple consecutive times with a known User Name and incorrect Password. Users must wait a set period of time for their accounts to unlock.
Upon a user entering MyEnroll360 login credentials, the system verifies their access by evaluating several properties associated with the credentials e.g., account not locked, account active, etc. Upon a successfully verification, the user is presented with a privacy statement. If the user accepts the privacy statement, then the user is permitted into the system and is provided a session. The session is a system-monitored process that includes tracking key properties associated with the user’s login, roles, access rights, data access, page access and other vital properties.
All users’ sessions are subject to an inactivity timer that tracks the length of time each user is logged in to the system (for example, user has an active session but has been inactive with no mouse movements or keyboard entries). The system is setup with a maximum period of inactivity for each user type (administrator, employee). If a user’s inactive period equals the user’s user type maximum period of inactivity the system will terminate the user’s session.
These processes help ensure the security of access to MyEnroll360.