We are going through a HIPAA audit and that is one thing that they are looking for. Also is there a log that we can look at for failed login attempts that we can monitor? Let me know, and if not, can we put in an enhancement request? I think they are checking for the potential for brute force entry into the system and what the security measures we can implement.