Access Control and Security Features and Functions

• A single user ID and password that lets a valid system user access all the functions required across multiple systems


• Password management and authentication centralized such that any change in passwords will be effected across the systems


• Logging of all system user activities to provide an audit trail


• Security on accessing log files


• Read access for each user only to fields, screens, and functions that are assigned to them


• Inability for users to bypass the access control and audit trails when accessing the fields, screens, functions, and data


• Multilevel access privileges based on which category users belong to; for example, managers, system users, system administrators, etc.


• Daily recording and reporting of the terminal and user identifications of unauthorized attempts to log onto the system


• A mechanism to lock the user out from all systems after a number (set as a system parameter) of unsuccessful login attempts


• Reinstatement of such locked out users by the systems administrator, and only the systems administrator


• Expiry of user passwords after a preset period


• Password protected access to restricted data (e.g., customer details)


• Inclusion, in all modules, of protection (e.g., firewall, security module, etc.) from hackers and unauthorized individuals, both locals and Web-based intruders


• Local and remote access for authorized personnel, including access to diagnosis, maintenance, software updates, application development, and reporting tools


• Support authorization by amount of credit adjustment, by type of customer being supported