Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Configure password and login settings that are available to the logon process.
Manage user session settings.
Understand what password and login settings are and how they apply to the user login.
Password and Login settings ensure a secure and reliable user log-on authentication experience.
To configure Password and Login settings, visit the Settings page from the Admin top menu, and then select the Password Policies and the Session Control tabs.
As an administrator, you can configure the following:
Password policies
Two-factor authentication
Restrict open sessions for users/company
As a participant, you can do the following:
Configure how to receive the two-authentication factor.
The platform automatically logs out that user's session after some time of inactivity to protect data from unauthorized access.
The platform automatically blocks that user's access after a specified number of incorrect login attempts to protect user accounts from unauthorized access and potential security breaches.
Require that user's account password be reset if it was blocked.
Manage log on options to configure password policies.
View which parameters to enforce for users to log on to ProcessMaker Platform.
Your user account or group membership must have the "Settings: View Settings" permission to view Password Policies unless your user account has the Make this user a Super Admin setting selected.
See the Settings permissions or ask your Administrator for assistance.
Follow these steps to view the Log-In Options tab settings:
Ensure that you are logged on to ProcessMaker Platform.
Click the Admin option from the top menu. The Users page displays.
Click the Log-In Options tab. The settings display to configure parameters with which users must comply to log on to ProcessMaker Platform.
Configure a log on option.
Your user account or group membership must have the "Settings: Update Settings" permission to edit settings from the Log-In Options tab unless your user account has the Make this user a Super Admin setting selected.
See the Settings permissions or ask your Administrator for assistance.
Configure the following Log-In Options tab settings as necessary:
Enable users to change their passwords.
Follow these steps to enable a user to change their password:
View the Log-In Options tab settings. The Log-In Options tab displays.
Enable the Password Set By User toggle key. The following message displays: The setting was updated. When this setting is enabled, users are able to change their passwords when editing their user profile.
If this setting is toggled off, users won't have the option to update their password while editing their user profile.
Note: This setting applies to all users except Super Admins. Users with Super Admin permissions will always have the ability to change passwords.
Enable at least one numeric character for user passwords.
Follow these steps to enable numeric characters:
View the Log-In Options tab settings. The Log-In Options tab displays.
Enable the Numeric Characters toggle key. The following message displays: The setting was updated.
Enable at least one uppercase character for user passwords.
Follow these steps to enable uppercase characters:
View the Log-In Options tab settings. The Log-In Options tab displays.
Enable the Uppercase Characters toggle key. The following message displays: The setting was updated.
Enable at least one special character for user passwords.
Follow these steps to enable special characters:
View the Log-In Options tab settings. The Log-In Options tab displays.
Enable the Special Characters toggle key. The following message displays: The setting was updated.
Set the maximum length of password characters.
Follow these steps to set the maximum length:
View the Log-In Options tab settings. The Log-In Options tab displays.
In the setting, enter a maximum number of characters for the password.
Click Save. The following message displays: The setting was updated.
Set the minimum length of password characters.
Follow these steps to set the minimum length:
View the Log-In Options tab settings. The Log-In Options tab displays.
In the setting, enter a maximum number of characters for the password.
Click Save. The following message displays: The setting was updated.
Set in how many days the password expires.
Follow these steps to set the password expiration:
View the Log-In Options tab settings. The Log-In Options tab displays.
In the setting, enter a number of days when the password expires.
Click Save. The following message displays: The setting was updated.
Set the number of consecutive unsuccessful login attempts before blocking the login action momentarily.
Follow these steps to set the password expiration:
View the Log-In Options tab settings. The Log-In Options tab displays.
In the setting, enter a number of consecutive unsuccessful login attempts before blocking the login action momentarily.
Click Save. The following message displays: The setting was updated.
Enhance login security by enabling two-step authentication for user verification.
Two-step authentication must also be enabled in group-level settings.
Follow these steps to set up two-step authentication:
View the Log-In Options tab settings. The Log-In Options tab displays.
Enable the Require Two Step Authentication toggle key. The following message displays: The setting was updated.
Next, select a Two Step Authentication Method.
Choose an authentication method for sending two-step verification codes.
Follow these steps to set a two-step authentication method:
View the Log-In Options tab settings. The Log-In Options tab displays.
Select one or more authentication methods as follows:
Select By email to send the code to your account email. An email address must be configured in user properties.
Select By message to phone number to send the code to your account phone number. A phone number must be configured in user properties.
Select Authenticator App to send the code to an authenticator app such as Google Authenticator.
Click Save. The following message displays: The setting was updated.
View session control settings.
Follow these steps to view the session control options:
Click the Admin option from the top menu. The Users page displays.
Click the Session Control tab. The Session Control settings display.
Click the Settings iconfrom the left sidebar. The Settings page displays a tab for each setting.
Click the toggle option or the Edit icon. See Edit a Password Policy.
Click the Edit iconfor the Maximum Length setting. The Maximum Length screen displays.
Click the Edit iconfor the Minimum Length setting. The Minimum Length screen displays.
Click the Edit iconfor the Password Expiration setting. The Password expiration screen displays.
Click the Edit iconfor the Login Failed setting. The Login failed screen displays.
Click the Edit iconfor the Two Step Authentication Method setting. The Two Step Authentication Method screen displays.
See the permissions or ask your Administrator for assistance.
Ensure that you are to ProcessMaker Platform.
Click the Settings iconfrom the left sidebar. The Settings page displays a tab for each setting.
Click the toggle option or the Edit icon. See .
Configure a Session Control.
Your user account or group membership must have the "Settings: Update Settings" permission to edit Session Control unless your user account has the Make this user a Super Admin setting selected.
See the Settings permissions or ask your Administrator for assistance.
Configure the following Session Control tab settings as necessary:
Set the IP address restriction policy when a user logs on or attempts to log on again using the same user account.
Follow these steps to set the IP restriction policy:
View your Session Control settings. The Session Control tab displays.
Select the IP restriction as follows:
Disabled: Disable this setting. The user may log on from a different IP address than that used by the current session. This is the default setting.
Block duplicate session: Block any attempt to start another session by the same user on another IP address.
Kill existing session: End the active session.
Click Save. The following message displays: The setting was updated.
Set the device restriction made from user's login.
Follow these steps to set the device restriction:
View your Session Control settings. The Session Control tab displays.
Select device restriction as follows:
Disabled: Disable this setting. The user may log on from multiple devices. This is the default setting.
Block duplicate session: Block any attempt to start another session by the same user on another device.
Kill existing session: End any active sessions that the user has on other devices at the moment the new session starts. Keep the current session on the current device.
Click Save. The following message displays: The setting was updated.
Set the session inactivity in minutes.
Follow these steps to set the session inactivity:
View your Session Control settings. The Session Control tab displays.
In the setting, enter the number of minutes to wait for a session's inactivity. 180 is set by default.
Click Save. The following message displays: The setting was updated.
Click the Edit iconfor the IP Restriction setting. The IP restriction screen displays.
Click the Edit iconfor the Device restriction setting. The Device restriction screen displays.
Click the Edit iconfor the Session Inactivity setting. The Session Inactivity screen displays.