Imprivata Documentation | Imprivata Vendor Privileged Access Management | Topic updated: September 23, 2025

Passwords and Accounts

The Passwords & Accounts enables you to configure settings for user accounts, passwords, physical devices, Remote Desktop Protocol (RDP), authentication requirements, authorized networks and API Keys.

User Account Settings

User Account Settings allows you to:

Disable Inactive and Not Registered accounts after a custom number of days.
Notify users about their account disablement.
Set a number of failed login attempts in a given time before being locked out.
Set the unlocking of an account to a time limit or a manual override.
Set the minimum length for a User ID.

Password Settings

Password Settings allows you to set password rules for all user types.

NOTE:

Changes to the system password policy apply to new User accounts, or to Users who reset their password.

Physical Device Authentication

Physical Devices Authentication enables you to set a physical device as an authentication process, instead or in addition to a password. Physical devices can be keycards or fingerprint readers.

RDP Settings

RDP Settings enables you to set the access you have to your customer's assets (specifically drives and printers) during a session. You can also enable your users to override your policy.

Authentication Requirements

Authentication Requirements enables you to enforce authentication through:

Authorized Networks
Email Verification
Mobile Authenticator
Multi-Factor Authentication (MFA)

Authorized Networks

Authorized Networks displays all available networks. A user can add a new network or delete an existing network.

API Keys Settings

The API Keys Settings enable you to set rules for API Keys in your VPAM server. From this page, you can disable API Keys, set expiration dates for API keys and tokens.

Vendor Representative Settings

The Vendor Representative Settings enables you to Allow Self Registration to vendor reps, as long as they have an email address with an Authorized Domain. Read the Authorized Domain section in the Vendor Management documentation.

You can also configure two optional messages:

A Post registration message for vendor reps that are awaiting approval from the users you configure in the Email Notification List of the Vendor.
A Registration failure message for vendor reps that fail to meet requirements for self-registration (see the Authorized Domains and Disqualified Email Addresses section of Vendor Management.)

Configure the Vendor Representative Settings considering the following:

Require approval for Vendor Reps at Login: Vendor Representatives must request access to the system.
Require approval for Vendor Reps per Application based on the Application's Department: Vendor Representatives can log in. They must request access for each individual application.
Require approval for Vendor Reps per Application based on the Vendor's Department: Self registration requires approval before connecting.
No Vendor Rep Approval: Your server is open for any member with the Authorized Domain to access.