SchoolWise User Security

The SchoolWise Desktop client security is managed from the User Account Editor. To access the User Account Editor, go to the File Menu in the top left hand corner of SchoolWise and click on File - System Administration - Edit User Accounts as seen below.

The User Account Editor allows you to add, edit, or delete user accounts. Click the Add button to create a new user account.

Click the Delete button to delete an existing user account.

Click the Edit button or double-click on a username to edit the user account properties. You will see the User Properties form below. Click on the appropriate tab to edit the user account properties.

The Password tab is where you set the original password for the user and make changes to other security functions.

• Set Password: While you can manage individual passwords it's much easier to set tighter restrictions on password creation and let users set their own. You can set the original password (or reset it) by checking or un-checking the box that says ‘Set Password’. Once the original password is set you can check the box for ‘Must Change Password Next Login’. The user can then manage and maintain their own password from that point on. If they forget their password, you can reset it again.

• Set the required minimum length of the password and the number of days till a password expires.

• Grace Logins are how many times a user can type the wrong password before SchoolWise Desktop client closes and then they have to re-open it again.

• The Lock Session After feature automatically logs out the user after the determined time of inactivity (they have to type their password again to log back in). This feature is very useful and recommended for anyone with remote access or those who leave their computer unattended.

The User Information tab is where you define the Username, Fullname, and Description for the user account. A user account can be disabled from this tab.

User account privileges can be set using the Group Memberships tab and Privileges tab.

The Schools tab can be used to assign explicit privileges to specific schools in a multi-school district. Users in a multi-school district with a group privilege to all schools do not require explicit privileges to specific schools. Users in a single school district do not require explicit privileges to that one school as any valid login can access that one school.

SchoolWise Desktop Default User Account

SchoolWise comes pre-loaded with an Administrator default user account. The username & password for this account is shared during initial training. This default user account was never intended for use beyond initial training, yet many schools have never changed the Administrator account password or deleted the Administrator account. While often overlooked, the Administrator account password should be changed immediately after initial login. Once a new user account has been created with Security Admin privileges, the original Administrator account should be deleted (Right-click on the user name and choose Delete User as shown below).

SchoolWise Web User Security

Click here for instructions to create a staff web user account. Staff are required to create a SchoolWise web user account before any web privileges can be granted. Once the staff web user account has been created, the appropriate privileges can be granted by a security admin with the authority to set privileges. See here for further details regarding web user privileges: https://help.schoolwise.com/docs/user-privileges

The following Staff Account Security Settings can be set in your District Configuration Settings:

• Enable 2FA

• Require Strong Teacher Passwords (If strong passwords are required, you can also require that passwords be changed after 1-12 months)

• Number of idle minutes before Forced Staff Logout

  See here for more details regarding web user security settings: https://help.schoolwise.com/docs/web-configuration-settings#staff-account-security-settings