> For the complete documentation index, see [llms.txt](https://support.portsip.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://support.portsip.com/portsip-communications-solution/portsip-pbx-administration-guide/3-tenant-management/3-tenant-management-1.md).
# Password and Sign-In Security
This section allows administrators to configure **password policies** and **sign-in security settings** for extension users within a tenant. These controls help protect user accounts, reduce the risk of unauthorized access, and enforce consistent security standards across the organization.
Configurable options include password length, complexity requirements, and two-factor authentication (2FA).
***
### Password Policy
To configure the password policy:
1. Sign in to the **PBX Web Portal**.
2. Navigate to **Company** from the left-hand menu.
3. Select the **Password Policy** tab.
From here, you can customize the tenant’s password requirements, including:
* **Minimum password length**
* **Maximum password length**
* **Password complexity rules** (for example, uppercase letters, lowercase letters, numbers, and special characters)
These settings apply to all extension users within the tenant and help enforce strong password practices.
***
### Two-Factor Authentication (2FA)
**PortSIP PBX** supports **two-factor authentication (2FA)** for extension users by sending a one-time verification code via email.
#### Enabling 2FA
When the **Enable two-step verification** option is enabled:
* All extension users under the tenant must provide:
1. Their username and password
2. A verification code sent to their registered email address
This additional verification step significantly enhances account security.
#### Mail Server Requirement
Because 2FA relies on email delivery, it is **critical** that the **Mail Server settings** are correctly configured and fully operational.
> **Important**\
> If the mail server is not properly configured, users will not receive the verification code and will be unable to sign in.
#### Verification Warning
After enabling 2FA and clicking **OK** to save the configuration, the PBX Web Portal will display a **warning message** prompting you to verify the mail server settings. This ensures administrators confirm email delivery before enforcing two-factor authentication for users.
---
# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.
## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:
```
GET https://support.portsip.com/portsip-communications-solution/portsip-pbx-administration-guide/3-tenant-management/3-tenant-management-1.md?ask=&goal=
```
`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.