Help Document
Configuring Security Settings


    Security Settings configures portal encryption and user password requirements.


    To configure Security Settings, users must be assigned a security role with the following permissions:

    • Administrator System Role


    1. In the Setup Home page, click Manage > Company Preferences.
    2. Click Edit.
    3. Select the Security Settings tab. Configure the following fields and then click Save.

    General Settings

    This section configures general security for your portal.

    • Use Secure Connection (SSL): If you want browsers to always use SSL when viewing your portal, check this option. Note that if you are using your own URL, you need to contact Magentrix Technical Support in order to configure your SSL Certificate. See Obtaining an SSL Certificate.
    • Session Timeout: Select a time period for session timeouts. After the selected time period has passed, an inactive user is logged out from their session.
    • Enable Maintenance Mode: If you want to enable Maintenance Mode for the portal, check this option. Enabling this option terminates all user sessions and sets the site to Maintenance Mode. While in Maintenance Mode, only administrators are able to log in.
    • Under Maintenance Message: Enter a brief message that is displayed to users during Maintenance Mode.

    Authentication Settings

    This section configures two-factor authentication settings for your portal. For more information on two-factor authentication, see Enabling and Configuring Two-Factor Authentication for Your Portal.

    Single Sign-On Settings

    This section configures settings for SAML and SSO login from third party websites. For more information on SAML, see Enabling and Configuring SAML for Your Portal.

    Password Settings

    This section configures user passwords and logins.

    • Minimum Password Length: Select the minimum character length for user passwords.
    • Password Complexity: Select a complexity level for user passwords. The following options are selectable:
      • Low — No restrictions
      • Medium — Password must have a lower case letter, an upper case letter, and a number
      • High — Passwords must have a lower case letter, an upper case letter, a number, and a special character
    • Password Expiry: Select a time period for password expiration. After the selected time period has passed, the user is prompted to create a new password for the portal.
      Note: External applications that integrate with your instance using your user account password will no longer be able to connect to the system when your password expires.
    • Remember Password History: Gives administrators control when users are changing passwords- if they can choose one of their previous passwords.
    • Maximum Invalid Login Attempts: Select a limit to the amount of times users can attempt to log in with an incorrect password. After this limit has been exceeded, the user account will be locked out for the time period specified in Lockout Period.
    • Lockout Period: Select a time period in minutes for account lockouts. When users fail to log in, their user account becomes locked for the value specified in this field. After this time period has passed, users may attempt to log in again.

    Communication Settings

    This section specifies the email templates used when user accounts are created, when passwords are reset by administrators, and when users request a password reset. For more information regarding email templates, see About Email Templates.

    • New User Template: Select an email template that is sent to new users when their account is created.
    • Reset Password Template: Select an email template that is sent to users when their password is reset by administrators.
    • Forgot Password Template: Select an email template that is sent to users when they request a password reset after forgetting their password.


    << Configuring System Settings | Configuring Members Settings >>