Log-In Options Settings

View the Log-In Options

Follow these steps to view the Log-In Options settings:

1. Ensure that you are logged on to ProcessMaker Platform.

2. Click the Admin option from the top menu to view the Users page.

3. Click the Settings icon from the left sidebar to view all settings.

4. From the Settings panel on the left, expand the Log-in & Auth section.

5. Select Log-In Options to view the following details:

   • Setting: The Setting column displays the Log-In Options Setting name.

   • Configuration: The Configuration column displays the setting value and how it is configured.
     

Configure the Log-In Options

The following settings can be configured in the Log-In Options tab:

• Set password policies.

• Enable two-factor authentication.

Set Password Policies

Follow these steps to enable a user to change their password:

1. Enable the Password Set By User toggle key to allow users to change their passwords. When this setting is enabled, users are able to change their passwords when editing their user profile.

   

2. If this setting is toggled off, users won't have the option to update their password while editing their user profile.

   

   Note:

   This setting applies to all users except Super Admins. Users with Super Admin permissions will always have the ability to change passwords.

3. Enable the Numeric Characters toggle key to allow numeric characters in passwords.

4. Enable the Uppercase Characters toggle key to allow uppercase characters.

5. Enable the Special Characters toggle key to allow special characters.

6. Click the Edit icon for the Maximum Length setting to set the maximum password length.

   

7. Enter the maximum number of characters allowed for the password, and click Save.

8. Click the Edit icon for the Minimum Length setting to set the minimum password length.

   

9. Enter the minimum number of characters allowed for the password, and click Save.

10. Click the Edit icon for the Password Expiration setting.  

    

11. Enter the number of days after which a password will expire, and click Save.

12. Click the Edit icon for the Login Failed setting.

    

13. Enter a number of consecutive unsuccessful login attempts before blocking the login action, and click Save.

Enable Two-Factor Authentication

Enhance login security by enabling two-factor authentication for user verification.

Follow these steps to set up two-factor authentication (2FA):

1. Enable the Require Two Step Authentication toggle key.

2. Click the Edit icon for the Two Step Authentication Method setting.

   

3. Select one or more authentication methods:

   • Select By email to send the code to your account email. An email address must be configured in user properties.

   • Select By message to phone number to send the code to your account phone number. A phone number must be configured in user properties.

   • Select Authenticator App to send the code to an authenticator app such as Google Authenticator.

     Code Validity

     The length and validity of the security code depend on the selected 2FA method.

     • When 2FA codes are delivered via Email or SMS, users receive an 8-digit code that is valid for 5 minutes. This extended validity accounts for potential delivery delays caused by background processing, external providers, or email and mobile carriers.

     • When using an authenticator app (such as Google Authenticator), users receive a 6-digit code that is valid for 1 minute, following standard industry practices since the code is generated locally on the user’s device.

4. Click Save to save all changes.