Star Citizen Maximum Number of Login Attempts

The feedback you submit here is used but to help improve this folio.

That's great! Thanks for your feedback!

Give thanks you lot for your feedback!

Nearly the Security Tab

Attending: You are now reading about a premium feature. If yous do not have access and would like to purchase access or receive a demo, contact your Account Executive.

All Qualtrics data and brands are protected with the utmost care. Yet, sometimes yous may want additional security settings, such every bit the power to track which users are logged in, add more than requirements to passwords, modify how many failed logins lead to an business relationship lockout, and so much more than.

If yous have purchased the Enterprise Security Package, Brand Administrators tin access all these settings and more than by going to theAdmin page and selectingSecurity.

Choosing admin from the top-level navigation in the top-left of every page of the website

Security tab on the upper-right Admin page

Security Settings

Security Settings is the first section under the Security tab.

Security Settings button in the upper-left of the Security tab

Allow Proxy Logins

Allow proxy logins in the Authentication section

Proxy logins allow Make Admins or higher privileged accounts to log into different user accounts on this make through the Users tab. By deselecting Allow Proxy Logins, you are making information technology then no Brand Admin or back up rep can directly log into a user'due south account.

Attention: Brand Admins tin admission content in the entire brand, just disabling the Let Proxy Logins permission will prevent Brand Administrators from acting on behalf of another user.

Enable Two-factor Authentication

Enable two-factor Authentication in the Authentication section

When you select Enable Ii-factor Authentication, users must provide a verification code later providing their username and password in order to login. Users can fix a preferred method of receiving this lawmaking – for example, through email or an authentication app on their phone.

Attention: This option is disabled for brands with SSO. If y'all would similar to fix 2-cistron hallmark with SSO, delight reach out to your identity provider.

On next login, users will go through the enrollment process where they set their preferred verification method.

The login screen goes to a section called Two-Step Verification and makes you choose from an option before continuing

Users will besides receive an e-mail with backup codes, which serve every bit a recovery option if they lose access to their verification method. If a user needs to reset their backup codes or reconfigure their 2-factor authentication setup, they tin can practise and then from their User Settings.

image of the regenerate button for regenerating backup codes in account settings

In one case the setup is complete, future logins for that user volition apply the two-gene authentication procedure.

On the left, the QR code that goes with a verification app; on the right, the field for the code sent in an email

Users tin can personally select from a number of authenticator apps, including Google Authenticator, Duo Mobile, and Authy.

Minimum Password Requirements

Fields where you fill out the minimum password requirements

You tin can customize the requirements of passwords created in your make. When you leave a field blank, that means that feature is not required in the password. The above instance shows the default password requirements.

Attention: Changes made here will employ to all users in your make. If a user'southward password does not fulfill the new requirements, they will be prompted to change their password the adjacent fourth dimension they try to log in.

Qtip: In that location are settings for password expiration under the Organization Settings tab.

User Sessions

User sessions settings

Minutes of inactivity until automatic logout: Determine how long someone can exist in their account, not navigating pages or making edits, before they are logged out. This can be helpful so that accounts left open on idle screens cannot be accessed by passersby.
Qtip: The default session timeout is 60 minutes without user activity.
Maximum Concurrent Sessions Per User: Determine how many people can be agile in one business relationship at in one case. If this number is exceeded, the newest user trying to log in will not exist immune into the account.

Account Lockout

When a user repeatedly gets the username or countersign to an account incorrect, the system will lock them out. This is a feature available on all Qualtrics brands, which ensures that strangers cannot become admission to accounts that don't belong to them.

However, with the Security tab, you tin specify more than most how this Account Lockout system works.

Account lockout options

Select the number of failed login attempts.
Select the timeframe within which these login attempts occur.
Select how many minutes the account will be locked before it tin be logged into over again.

Qtip: If a brand does non have the Security tab feature or the Business relationship Lockout settings have not been modified, by default an account will lock a user out for 60 minutes later on ten failed attempts to login.

Disable Inactive Accounts

Sometimes accounts volition sit down around in a make for a long time without any use. Information technology tin can exist tedious to proceed track of these accounts individually, and you may not necessarily desire to set an account expiration date.

Options for disabling inactive accounts

Yous tin choose to disable accounts later on a number of predetermined days. Note that disabling an account volition not delete it – you, every bit the brand ambassador, can e'er re-enable the account.

Attention: If yous cull to disable inactive accounts, please notation that Qualtrics will consistently appraise all inactive accounts and automatically disable whatsoever business relationship that meets the condition y'all selected.
Different conditions you can set when automatically disabling inactive accounts

Active Sessions

Active Sessions button in the upper-left of the Security tab

The Active Sessions section volition evidence you lot all the users currently logged in on your make, plus identifying information.

If you lot encounter an unusual IP Address or Location, y'all can select the user to view more than data, such as the time they logged in and their User ID.

Selecting users and viewing session info

If the business relationship activity looks suspicious or you would like to force the user to log out for whatever reason, clickEnd Session.

Activity Logs

Activity Logs section of the Security tab

In theAction Logs department, y'all tin can view various actions that accept taken place inside the brand.

A list of login activity, with timestamps and usernames

For every entry, you will exist able to run into an Event Type, Date, Activity, Username of the account it happened to, the IP Address where this activity took place, and a Session ID.

There are two dissimilar event types,Information andSecurity:

Data is for a standard event, such every bit a user successfully logged in or reset their password.
Security is for an event thatmight be a security business concern, such every bit a failed login or a login at an abnormal fourth dimension.

in the activity log, multiple events with the red security warning
You can filter your events past Time Range,Action Type, or by typing in a item username yous're interested in.

Activity Type

There are several types of activity you lot can filter past.

Activity types dropdown menu expanded to show options

Logins: View regular, proxy, SSO, and Failed logins. To determine whether the login was a proxy or non, click on a user and view the information to the right.Proxy Login will accept a value of True. To run across more about the proxy login, clickProxy Details.
Password Changes: Any time a user changes their own password in the Account Settings folio.
Password Resets:Whenever a password is reset. This includes users choosingForgot Your Countersign? on the login page, Brand Admins sending password resets, or the user having to change their countersign because the password expired or you set new minimum requirements.
Session Creations:Any time an account is logged into, thus creating a new session. This is unlike from Logins considering it doesn't count failures or let y'all to check for proxies. If you click a user, it will show when the session concluded.
Session Terminations:Every time a session terminates, either because a user logged out or an ambassador forced them to. To meet which, click the termination and wait at theReason field.
Users:Any fourth dimension a user is created or deleted. Issue Blazon will beDeleted for deleted users. Click a user for more information, such as their username before they were terminated.
Organizations:Every time changes are made to the entire brand. This includes changes to the brand blazon, base URL, expiration date, and brand clarification. Each modify is indicated past the original value and the new value.