iVvy has been built with security in mind, and offers you a range of flexibility about how secure you want your account to be. Read more about iVvy’s security or follow the steps below to personalise your account.
To Change your Security Settings:
- Click on the 'Settings Cog' icon in the top right hand of the screen to take you into the Global Settings Section.
- Click on the Security menu item on the left, and choose from the following options;
- Authentication - Choose your preferred Authentication Method. Choose between Basic which means you use your iVvy username and password to login, or choose Windows Active Directory, which allows you to login using your Windows account.
- 2 Step Verification - Is an authetication process that requires two passwords for extra security. You can verify via a yubikey which is a usb stick that generates a random password, or a phone app with "google authenticator" that generates a new password every 30 or so seconds so it cannot be copied.
- Restrict login by IP - In Restrict Login By IP Address you can choose to only let people login from your list of safe IP addresses. To add an IP address, select 'Yes' then type in the IP address in the box. You can retrieve your computer’s IP address by going to http://www.whatismyip.com.
- Minimum Password length - Choose whether or not to Force Minimum Password Length. This prevents people from having very short, and therefore very weak passwords. Choose ' Yes' if you do want to force a minimum password length, then choose a number between 4 and 10 as the minimum length, 10 encouraging stronger passwords than 4.
- Maximum Login Attempts - Choose the Maximum Login Attempts you want. This is the number of times someone tries to login with incorrect details before they are locked out of logging in. Also ensure you select the Lockout Period. This is the amount of time they’ll be locked out for.
- Maximum Login Attempts - Choose the Maximum Login Attempts Before Displaying Captcha Image. This will cause a Word Authentication or Captcha Image test to appear after your designated number of failed login attempts. This Captcha will need to be successfully completed by the person before they can login to their account. This helps prevent computer programs from trying an unlimited number of passwords to hack into your account.
- Session timeouts - In Session Timeout choose the length of time a logged in user must be inactive for before they are kicked out of the account.
- Force session identity - Choose whether or not you want to Force Session Identity. This feature helps prevent anyone capturing your details while you are logged in and replicating them to enable them to login using your details. There are two methods you can use. Enabling Use IP Address means that only people with your IP address can remain logged in using your details. This is the most secure method but is not recommended for offices that have multiple IP addresses, such as universities or big offices. Enabling Use Browser means that only people using the same browser details as you can login to your account. This is less secure but still very effective.
- Allowing iVvy to login - Choose whether or not you will Allow [iVvy] Support To Login. When choosing Ask, a request will be sent to your user account prompting you to accept or decline the login request. Choose Yes if you are happy for the Support Team to log in to your account without being asked why. Choose No if you don't want the Support Team to log in to your account at all. Note: In some cases, it is necessary for the Support Team to view your account in order to see and resolve any support tickets. If, in the event you have this setting as No, we will contact you and ask if you are comfortable with temporarily changing your account settings to allow us access.
It is important that your Security Settings allow you the flexibility to achieve the tasks you need to, without compromising your security. If you need additional help with your Security Settings, contact Support.
|Was this information helpful?