Skip over navigation
Documentation
You are currently viewing documentation for a previously released version of OroCRM. See the latest long-term support version.

User settings

In System>Configuration>System Configuration>General Setup>User Settings, you can define the user-related options to be applied to your OroCRM instance.


../../../_images/user.png

Password Restrictions

OptionDescription
Minimal Password LengthEnter the number of characters to define the length of the password. By default, 8 is specified
Require a NumberSpecify whether the password should contain a number. By default, the option is enabled.
Require A Lower Case LetterSpecify whether the password should contain a lower case letter. By default, the option is enabled
Require An Upper Case LetterSpecify whether the password should contain an upper case letter. By default, the option is enabled
Require A Special CharacterSpecify whether the password should contain special characters: !”#$%&’()*+-,./:;<=>?@[]^_`{|}~ and space. By default, the option is disabled

Login Attempts

Note

This feature is only available in the Enterprise edition.

OptionDescription
Enable Failed logins LimitSpecify whether you wish to enable failed logins limit. By default, the option is enabled.
Max Login AttemptsSpecify the maximum number of failed login attempts. By default, the number is set to 10.

Password Change Policy

Note

This feature is only available in the Enterprise edition.

OptionDescription
Enable Password Change PolicyEnable this option to mandate your users to change their passwords after a certain period. The option is disabled by default.
Maximum Password Age (Days)Specify the period of maximum password validity in days. By default, the number is set to 30.
Enable Password History PolicyThis setting determines the number of unique new passwords that must be associated with a user account before an old password can be reused. The option is disabled by default.
Enforce Password HistoryThe number of previous user passwords which the new password cannot match. The number is set to 12 by default.

Two-factor Authentication

Note

This feature is only available in the Enterprise edition.

OptionDescription
Security Level

Determines how often to require authentication via email: never, upon first login from a new computer, or at every login.


../../../_images/authentication.png

The option is disabled by default.

Code Validity PeriodThis option determines how long the authentication code will be valid. If not used within the validity period, the code expires and the user must log in again. By default, the option is set to 1 hour.
Code LengthThis option determines the number of characters in authentication code. By default, the option is set to 6.
Browse maintained versions:2.62.32.01.12
Forums
Back to top