Configuration Security Report; Mandatory User Email is now reported where required

User Policy can ensure that User email addresses are mandatory. If a User does not have an email address (e.g., the User may have been created when the User Policy setting was off) and the User Policy now enforces it, then the User will be included in the report.

This new check is treated as a "Medium" priority User item within the Configuration Security Report.

Additionally, a permanent information section is now displayed at the top of the Configuration Security Report. This highlights that passwords cannot be validated for strength and length against the User Policy, as passwords cannot be reverse engineered to check.

The following built-in Summary Page has been updated:

• SummaryPage2_ConfigurationSecurityReport
• Version: 2.03 (09/04/2021)