Account Security Settings

You can change the security settings for your Account. While each feature has a default, we recommend adjusting these settings to improve security. This includes configuring 2FA, password expiration, and session timeouts.

Prerequisite

  • You must have an Account Owner role.

Key Benefits

  • Change the account settings: Customize the security settings to fit your needs.

  • Two-Factor Authentication (2FA): Set up 2FA for enhanced authentication.

  • Password expiration absolute period: Define how long a password can be used before it must be changed.

  • Password expiration inactivity period: Specify how long a password can remain unused before prompting for change.

  • Session expiration absolute timeout: Set a limit on session duration before re-authentication.

  • Session expiration inactivity timeout: End sessions after inactivity, requiring login again.

Change the Account Security Settings

  1. Click Account Management in the navigation sidebar.

  2. On the Account page, click the Security Settings tab.

  3. Adjust settings in the Two-Factor Authentication, Password, and Session sections.

  4. Click Save Changes to apply.

Two-Factor Authentication (2FA)

  • Purpose: Requires a second verification step beyond password.

  • Default: Disabled

  • Ayyeka Recommendation: Activate 2FA for better security.

  • Note: Takes effect next time users log in.

  • Actions:

    • Select Require two-factor authentication to enforce 2FA for all users.

    • If disabled at the account level, users can still activate 2FA in their User Settings.

Password Expiration Absolute Period

  • Purpose: Force password changes after a set period.

  • Default: 4 months

  • Min-Max: 10 days to 2 years

  • Ayyeka Recommendation: Set expiration to 30–120 days.

  • Note: Takes effect next time users reset passwords.

  • Actions:

    • Select Specify a Value to define custom duration.

    • Use shorter durations for higher security.

Password Expiration Inactivity Period

  • Purpose: Require password change after a period of account inactivity.

  • Default: 4 months

  • Min-Max: 10 days to 2 years

  • Ayyeka Recommendation: Set to 30–90 days.

  • Note: Takes effect next time users reset passwords.

  • Actions:

    • Select Specify a Value to set a custom duration.

    • Shorter durations improve security.

Session Expiration Absolute Timeout

  • Purpose: Require login again after a fixed session duration.

  • Default: 1 week

  • Min-Max: 1 hour to 3 months

  • Ayyeka Recommendation: Set to 1–24 hours.

  • Note: Takes effect next time users log in.

  • Actions:

    • Select Specify a Value to configure session length.

Session Expiration Inactivity Timeout

  • Purpose: End sessions after a period of inactivity.

  • Default: Disabled

  • Min-Max: 3 minutes to 1 month

  • Ayyeka Recommendation: Set to 5–30 minutes.

  • Note: Takes effect next time users log in.

  • Actions:

    • Select Specify a Value for custom timeout.

    • Shorter durations improve security.

Important Notes

  • Future Adjustments: Default, minimum, and maximum values may change to meet evolving security standards.

  • Sub-Account Inheritance: Sub-accounts using default settings inherit values from their parent account.

PreviousSecurity Best PracticesNextAdding Collection and Assigning Sites

Last updated