IIS Security Guidance for Employee Portal/Web Client
As Employee Portal and HRPro Web Client is running on the Microsoft Web Server (the Internet Information Server). For the administration and management of a web server, please consult your network administrator. The following information provides some guideline for IIS Security.
For better security control for Employee Portal/Web Client, you could also consider the followings:
It is also recommended Enable CAPTCHA on login page and SQL Server Password Encryption in Employee Portal and Web Client and enabled 2-step verification in Employee Portal.
See also:
2-step verification at Personal Options (EPortal)
2-step verification at Personal Options (Web Client)