About security in FirstClass Security on your FirstClass system User IDs and passwords Privileges Directory filtering Subscriptions Permissions Security on your FirstClass system In FirstClass, security is implemented through the following five layers: •       user IDs and passwords •       privileges •       Directory filtering •       subscriptions •       permissions [Top User IDs and passwords All registered FirstClass users login via their designated user ID and password. Server access will be denied if either are invalid. User IDs and passwords are set on the User Information form. The password field on the User Information form always displays ••••••••, making even the User Information form secure. Further password security is configured on the Group Privileges form, on which the administrator sets the site policies for passwords. If a user enters the wrong password on 3 consecutive attempts, the account login is locked for 1 minute. Top Privileges Privileges allow you to control all user and user group capabilities with respect to FirstClass server activities. There are 46 different privileges in FirstClass. Privileges are set for groups of users on the Group Privileges form, and are overridden at the user level on the User Information form. Top Directory filtering Directory filtering allows you to control what people can see in your FirstClass Directory. If no Directory filtering is used, anyone added to any group can see all the entries in the Directory. If users can't see things, it makes it a lot harder for them to access them. You can control how much of your system can be viewed in the Directory  in these ways: •       make a user account, conference, or public mail list unlisted •       make conferences unpublished •       allow members of user groups to view only selected user groups, conference groups or conferences in the Directory •       allow specific individual users to view selected users, user groups, conference groups or conferences in the Directory Through Directory Filtering you can configure a different view of the Directory for each of your user groups. If a conference name is not in the user's directory, the user cannot send mail to the conference. If a person's name is not listed in the Directory, another user cannot send that user email, view his personal calendar, or invite him to an instant messaging session. Top Subscriptions In FirstClass if a conference is not available on a user's Desktop or within any other conferences the user has access to, contents of this conference cannot be accessed by that user. Subscriptions guarantee that a user you want to access a conference can at least see it on his Desktop (or within other conferences). Permissions are then set to define what type/level of access the user will have for the conference. If you wish to subscribe all members of a user group to a conference, it may be more practical to add that conference to the user group's model Desktop than to subscribe each user individually. Top Permissions In most organizations it is necessary to control access to sensitive information. It may be appropriate for a particular group of users to have exclusive access to this information, while, for another group limited access to the information would suffice, and for other groups, no access at all. This reality is the basis for the concept of permissions in FirstClass. There are 17 levels of permission to choose from and 9 preset access levels based on combinations of these individual permissions. Top