Page History

Centralized control over security configuration options for portal users and agents.

Single Sign On (SSO)

The platform allows log in to the portal using 3rd party identity providers (IdP) (supports Okta). Using SSO administrative settings, permitted users can easily configure and manage identity provider settings.

• Enable Single Sign On: Click on the slider to enable or disable SSO functionality.
  

• Authentication Standard: Login standard to use for SSO. Available options are as below:
  • SAML: SAML is an acronym for Security Assertion Markup Language (SAML). This is the default option.
    
    • Url where you can get the SAML Metadata: Add the link of SAML metadata file and click the green arrow. This auto-populates the Single Sign On URL, Issuer URL and Certificate X.509 fields.
    • Single Sign On URL: The location where the portal launches to initiate the authentication process.
    • Issuer URL: It is also known as entity ID. It is used to validate the assertion.
    • Certificate X.509:  SAML uses an certificate to verify signed assertions.

    • Need Help?: Click on the See Instructions link. In this new window you will find the required information to fill in at your IdP configuration setup. 
      

      Info
      You need to add sign in URLs for the User and Agent.

  • OIDC: OIDC is an acronym for OpenID Connect.
    • Authorization ID: An authorization ID is an identifier that represents a set of privileges.
    • Authorization Secret: An Authorization secret is a secret known only to your application and the authorization server.

    • Isuer URL: It is also known as entity ID. It is used to validate the assertion.
      

      Info
      Your IdP provides the info about Authorization ID (Client ID) and Authorization Secret (Client secret).

    • Need Help?: Click on the See Instructions link. In this new window you will find the required information to complete at your IdP configuration setup. 

General

• Password Expire Days: Sets the number of days for the password expiration. Applies to both users and agents.

• Max Failed Login Attempts: Sets the number of password attempts after which the user is locked out
• Max Failed Login Attempts Agent: Sets the number of password attempts after which the agent is locked out

• Password Reuse Restriction Count: Sets the number of previous passwords that the user or agent cannot reuse when resetting the password. The minimum and default value for this field is 4 and the maximum value is 25.
• Browser Session Security:- Requires users to log back in any time the browser is closed
• Password Strength: By using a password strength slider, you can configure the password strength to Medium, Strong, or Very Strong (left to right). Hover the mouse on the password strength slider to get the description about the password requirements.
• Admin Set Passwords Are Temporary: Portal users and agents must change the password on the first login or when updating the password by the permitted portal user.

Session Timeout

You can enable or disable the session timeout parameters. 

• Browser Session Security: To ensure security, enable this parameter for the users and agents to login log in every time they launch the portal in a browser.
• Inactivity Timeout: You can set the inactivity timer for intervals of 5 mins, 15 mins, 30 mins, 1hr1hour, 2 hrshours, or 1 day. After the lapse period of the inactivity timeout inactivity exceeds the timer interval, a warning message appears to the user .
  or agent. You can stay logged in by performing some activity in any of the tabs.
  

  Info
  If you have multiple tabs open, and you are working in one tab, the session remains active for all tabs. If all tabs are inactive, the session ends after it reaches the time duration set in the Inactivity Timeout field. This setting applies to users and agents.

  
  
• Show Inactivity Warning (Agent/User): Set this parameter to display an inactivity warning for users and agents before the session is timed out. For example, if the inactivity timer is set to 5 mins, a warning message appears one Show Inactivity Warning (Agent/User): Set this parameter to display Inactivity warning for users and agents before the session is timed out. For example, if you set 1min, a warning message appears one minute before the inactivity timer is activated and the user or the agent has to login must log in again.
• Maximum Session Timeout: You can set the browser session timeout for 5 mins, 15mins, 30 mins, 1hr, 2hrs, 1 day, or 7 days. This setting enables the user or the agent to stay in the session according to the setting The maximum time a session can stay active. After the maximum timeout is reached, even if you are active, the session is logged out and you must log back in. For example, if you set the Maximum Session Timeout to 2 hours, after 2 hours, the session is logged out automatically.

Subnet IP 

List of permitted IPs that can access the portal. Permitted users can add/delete the IPs, as well as export files in .csv format.