System Id and Master Settings

From All n One's bxp software Wixi

Jump to: navigation, search

1 Overview

In bxp there are a number of settings that are controlled by the All n One team on your behalf primarily relating to the security controls of your system.


It is possible to see these settings and the values they are currently set to through


Main Menu > System Access Management > System Management > System Id and Master Settings


The primary configuration and disucssion of these items is available in CC-2-1_Security_and_Custom_Interface_configuration


2 Settings

masterSettings.png


  • System Id: Primarily to provide access to an eCourse from your system to another bxp system.


2.1 Active Control

Allows All n One to control your system at an override level

  • Active : System on or off
  • Cut Off Date : Usually set to the date of renewal of the contract
  • Max Users: Security check to prevent exceeding of contract agreed rates for users


2.2 Communications

  • SMS Send From : Default SMS address if non given at form or user level
  • Email Send From : Default email address if none given at form or user level
  • Allow alter on a form by form basis : Contract agreement and acceptance by client of responsibilities for management of abuse of mass communications tools. Only active if agreed to in contract.


2.3 Interface Settings

  • HTML Engine : Choice of XML1.0 or HTML5
  • Use Presence : Live presence engine of bxp
  • Hamster Images : Images of hamster errors can be hidden. True = images are shown


2.4 Security Options - Login

  • Enable Demo Logins : Anonymous user accounts. Disabled always by default.
  • System IPs: To IP lock your system, these are the approved IPs from which a user can log in.
  • URL to redirect non-IPs : The landing URL to which users will be sent if IP address not allowed
  • Login Identifier field : User information field by which to log in
  • Boolean password matching : If used MD5 Hashed passwords also applied
  • Use second level passwords : Requires a further field of information to be entered for id purposes
  • Second level field : What information should that be from?
  • Harden security messages : Removes helpful information such as "it's your password that's wrong" to improve security and reduce hackers fishing for login details.


2.5 Security Options - Passwords

  • Enable password resend engine : Allow users to reset their own passwords via email reset engine
  • Use DateTime for Password Change: Should passwords timeout?
  • Auto Time Period for Password Change (in days): If so in how many days since last change
  • Password History: How many passwords should the system keep to stop repeat passwords
  • Hide Passwords: Security improvement to prevent admins from seeing passwords
  • Lock Session Key: Reduces security by locking security token. Essential for some phone dialler integrations
  • Force Password Complexity: Set a minimum password complexity.


2.6 Security Options - Lockout

  • Lockout strategy : what engine is used to lock out an account
  • Lockout Auto Release : how do lock outs get released. Default is manually through SAM
  • Lockout Count (Attempts before lockout) : How many atttempts before the account locks
  • Lockout Release Time (mins) : Can allow another password attempt in x mins
  • Text Me Password Reminders : Use SMS to send passwords to users. Mobile number must be on users account prior to request.
  • 90 Day user Lockout : Automated engine to lock out users IF they haven't been active in 90 days
  • Self service password engine : For auto reset of passwords which approach to be used?


2.7 Security Options - Inactivity

  • Force inactivity logout - All users : Sets the time window for ALL users for inactivity logout
  • Inactive message : If a custom message is to be shown regarding the inactivity this replaces the default system message.