Platform Admins can set account-wide security settings such as password requirements, session duration, and 2FA. Security settings set on the screen in the image below (the main “Security Settings” section of your Admin Panel) will be applied to all products and users on the account.
Admins can determine four different settings regarding user passwords:
- Minimum Length (6 as the default/minimum accepted) setting
- Alpha + Numeric characters both required (off by default)
- Require password change every 90-days (off by default)
- Password must be different than previous four passwords (off by default)
Session Time Settings
This setting determines how long a session can remain inactive before timing out and forcing the user to log back in. The options available for the timeout settings include, 15 or 30 minutes, 1, 2, 4 (default setting), 6, 8, 12, and 24 hours.
Forcing Two-Factor Authentication
Under the “Account Security” header, you as a Platform Admin can enable two-factor authentication (2FA) for all users.
To enable this functionality, click on the toggle.
At that point, a modal will popup to confirm this action. If you want to confirm, select “Yes, Force Login Via 2FA”
After you select “Yes…” you will return to the “Security Settings” screen, where you need to select “Save Changes” in the top right corner.
At that point, any changes made will be reflected on all accounts.
If you want to set 2FA up for you individual account, click here.