Settings

‌Settings in CIAM can only be managed by users with the SuperAdmin role. Settings within CIAM are sorted in three categories: Account settings, that manage everything related to the user accounts, Styling settings, that determine the styling of the dashboard, and Email Template settings. ‌

Account settings

The following account related settings can be configured:

  • No-reply email - The email address from where the invitation emails are send. Note: for pre-production the domain currently has to be connectis.com

Password related settings:

  • Allow common password - Allow password that are on the 'common password list'. For security reasons, it is recommended to not check this option.

  • Allow numeric only password - Allow passwords to consist of only numbers. For security reasons, it is recommended to not check this option.

  • Minimum password length - The minimum number or characters a password should have. Minimum allowed is 8 characters.

  • Maximum failed login attempts - Specifies the maximum allowed number of failed login attempts before blocking the user.

  • Require 2FA for admins - Whether 2FA login is required for admin users

  • Require 2FA for users - Whether 2FA login is required for regular users

Account security settings:

  • Maximum days to trust device - Specifies the number of days for which OTP (2FA) will be bypassed from a trusted device. If this value is 0, the function will be disabled.

  • Maximum session duration in minutes - The maximum number of minutes a session can last before the user has to log in again.

  • Timeout for blocked user - Specifies the number of seconds that the user will be blocked for after the maximum failed login attempts has been reached.

  • Maximum inactive days - Specifies the maximum number of days for the user not to have a successful login before the user account will be deactivated.

  • Delete deactivated user - Deletes the user account if the maximum deactivated days limit is reached.

  • Maximum deactivated days - Specifies the maximum number of days for the user to have a deactivated account before the user account will be deleted (if the previous option was selected).

  • Delete user on organization user delete - Deletes the user account if the deleted organisation user is the only account linked to this user.

Email Template settings

The invitation email from CIAM can be configured in this section. Both the subject and the content of the email can be changed to match the wished from the service provider. The content is HTML with the possibility of inline styling. Plain text emails are also possible.

The following parameters can be used in the content of the email:

  • {{email_address}} for the email address of the recipient.

  • {{invitation_url}} for the link to accept the invitation.

  • {{invited_by}} for the full name of the user who is sending the invitation.

  • {{organization_name}} for the name of the organisation that the user is invited to.

  • {{roles}} for the recipient's roles in the organisation.

  • {{site_name}} for the name of the site.