Articles in this section

See more

User Login Admin

Avatar
Nikki Ruehle
  • Updated
Follow

The User Login Admin page is used by ARCOS administrators to control settings related to login, passwords and other security related items within ARCOS. These items include:

  • User Account Features: These are controls around resetting passwords.

  • Login Related Features: These are controls for how the login page looks and behaves.

  • Password Related Features: These are controls for requirements for passwords.

  • Secret Questions: Allows the creation of secret questions.

 

User Account Features

Control

Description

Require web users to have a verified email address?

When checked, users must have a verified account e-mail address before they can perform tasks within ARCOS.

Note: If the user does not have a verified account e-mail address when they log into the system, the user will remain on the My Account page until an e-mail address is verified.

Use secret questions to validate new users and password resets?

When checked, users must have a secret question and answer entered before they can perform tasks within ARCOS.

Note: If the user does not have a secret question and answer saved AND the checkbox for “Do not force user to visit MyAcct page" is NOT checked, the user will remain on the My Account page until a secret question and answer is saved.

Allow first time user setup and login?

Check this box enables the First Time User link on the login page which allows first time web users to configure their password without input from a system administrator.

New User email token expiration in minutes (default: 60)

This is how long the link on the New User e-mails is valid for. By default, the link is active for 60 minutes.

 

You can change the timeframe by entering the number of minutes the link should be active for in the textbox.

Verify Email token expiration in minutes (default: 60)

This is how long the link on the Verify E-mail e-mail is valid for. By default, the link is active for 60 minutes.

 

You can change the timeframe by entering the number of minutes the link should be active for in the textbox.

Password Reset email token expiration in minutes (default:60)

This is how long the link on the Password Rest e-mail is valid for. By default, the link is active for 60 minutes.

 

You can change the timeframe by entering the number of minutes the link should be active for in the textbox.

Auto-Logout web users after X minutes (default: 480)

This is how long a user can remain idle and logged into ARCOS without being auto-logged out. By default, this time is 480 minutes.

 

You can change the limit by entering the number of minutes for the auto-logout in the textbox.

Do not force user to visit"MyAcct" due to account email or secret question not being set.

When checked, the splash screen that forces users to enter either an account e-mail or a secret question/answer combination will not appear upon login.

 

Login Related Features

Control

Description

Include RememberMe checkbox on Login page?

When checked, the Remember Me checkbox will be available on the login page.

 

When a user checks the Remember Me checkbox on the login page when they login, the browser will remember the user’s web ID only. The user’s password will not be remembered.

# of bad web logins before warning (optional)

The number of invalid login attempts a user can enter before they receive a warning message stating their account will be locked if they have too many more failed attempts.

# of bad web logins before lockout (valid: 3-5, default: 5)

The number of invalid login attempts a user can enter before their account is locked. Employees can use the ‘Forgot Password’ link to reset their password even if they lock their account.

Who to call for password lockout (optional)

This is the message that will display to the user if they have locked their account.

Note: If this option is enabled, “T: If the number at which to call them”, must also be enabled.

The number at which to call them (optional)

This is the phone number that will display on the login page to a user with a locked account.

Note: If this option is enabled, "Who to call for password lockout", must also be enabled.

Mobile Login token  expiration in days (valid: 1-60, default: 14)

This is the number of days before the Mobile login token expires, when the user is logged out.

Mobile Push Notification expiration in days (valid: 14-120, default: 60)

This is the number of days before the user will be asked to login to continue to receive push notifications.

Two Factor Authentication

The options available:

  • Do Not Use: Bypasses this feature.

  • Enabled: Users will not be challenged upon login.

Note: Employees will need to check the Reset Authentication Key checkbox, accessible in the Employees>Password tab, to initiate the process.

  • Required: Makes the process mandatory and the user will be prompted to configure a key prior to login.

Enable Biometric Login for Mobile Devices?

When checked, allows the user to use either Fingerprint or Face ID capabilities on their mobile device within the Sign In page on the mobile apps.

Send Mobile Workbench credentials email for first time user?

When checked, ARCOS will send an automatic email to first time users including instructions and credentials on how to login to Mobile Workbench.

Note: This option only applies to those  customers who have Workbench and Crew Manager and/or Resource Assist.

 

Password Related Features

Control

Description

Minimum password length (valid: 8-20,default: 8)

This is the minimum number of characters a password must be. By default, a password must be at least eight  characters.

 

You can change the minimum requirements by entering the minimum number of characters required in the textbox.

Password format requirements?

There are three types of format requirements that are available and are described below:

  • None

  • Must contain at least one non-alpha character

  • Must include 3 of these 4 categories: uppercase, lowercase, numeric, special

Don't allow WebID (LoginId) in password? (required)

When checked, a user cannot use their web ID as their password.

Mandatory password expiration in days (valid: 30-365, default: 60l)

This allows a number of days a password is valid for. Once the limit is reached, the user will be forced to change their password when they login to the system.

 

When the Expire all web passwords now? checkbox is checked, ARCOS will flag all passwords as expired and will force all users to change their passwords the next time they login.

Don't allow reuse of previous passwords. How many?* (valid: 6-24, default: 6l)

When a user changes their password, they cannot reuse any of the past X passwords. (X = the number of passwords entered on this setting.)

Admin can enter temporary password on Password reset and Employee Modify pages?

When checked, an admin can enter a temporary password for a user when resetting their password via password reset or employee modify page.

Reset password if WebID is changed during Data Load? *

When checked, a user’s password will be reset if their web ID is changed by a load file.

 

Secret Questions

This section allows you to enter up to six secret questions a user can select when setting up their secret question/answer.

 

Related articles

Comments

0 comments

Please sign in to leave a comment.