User Authentication and Networking
What forms of user authentication does Connect Fonts use?
Connect Fonts uses a custom web-based authorization mechanism. We also support single sign-on using either Azure AD or Okta.
What are the security requirements for Extensis passwords?
Passwords must be a minimum of 8 characters. There are no limitations or requirements on the types of characters that can be used.
Passwords for user accounts on extensis.com do not expire; it is recommended that you change your password regularly.
How long do Connect Fonts user sessions last?
Idle login sessions on https://secure.extensis.com/ and https://connect.extensis.com/ expire after 30 minutes. Login sessions for Connect Fonts Powered By Suitcase expire after 30 days; when the Connect Fonts desktop application connects to Extensis's network of servers to synchronize user information and cloud libraries, the session length is reset.
What network ports and URLs does Connect Fonts require access to?
For full Connect Fonts functionality, the desktop application requires TCP port 443 to be accessible on the following URLs:
https://d20tcu3k0slplp.cloudfront.net (font CDN)
Additionally, the following sites are required for the Web client login:
How are user permissions handled in Connect Fonts?
Connect Fonts provides strict permissions to regulate access to administration functions and read/write access to shared cloud libraries. Access to shared cloud libraries is set on a per-user basis; there are no group- or role-based permissions.
Data Transmission and Storage
What user data does Extensis store for Connect Fonts?
How is user data protected during transit?
User data (including libraries, sets, and fonts) is sent over HTTPS-secured connections.
Can Connect Fonts sync fonts from an on-premises server?
Connect Fonts can only connect to Extensis's network of servers. There is no functionality for connecting to an on-premises server.
Maintenance and Updates
How are updates to Connect Fonts handled?
The Connect Fonts desktop application is updated by the end user. The desktop application notifies end users when an update is available.
The Connect Fonts service is managed by the Extensis DevOps team; production updates are deployed into Amazon Web Services when we have changes.
How long are service logs kept and who has access to them?
Logs for troubleshooting and technical support purposes are kept for 14 days. Logs are archived indefinitely in Amazon Web Services storage and accessible by the Extensis DevOps team.
What is your procedure in case of a data breach?
The Extensis Incident Response Team proceeds through the following stages:
- Severity classification
- Root cause analysis
The Incident Response Team will respond as per the more detailed Incident Response Plan published and maintained by the Extensis DevOps Manager.