(Role Required: Owner, Administrator, Read-Only)

Settings allow the owner and administrator to set some rules or policies at the company level, that is for all the users irrespective of their groups or applications or policies. Settings are divided into 8 sections- General, Mobile, Auth Factor, User, Admin, EPCS, Email template, Biometric Settings value.

General

General Settings allow the owner / administrator to view and edit few of the general company settings like, Account ID, which is an alpha numeric string.

1. The admin can edit attributes like Account Name, Preferred Timezone and Logo.

2. Account Name: Account name is defaulted to the company name but can be edited by the administrator.

3. Preferred timezone: Preferred timezone is a drop with different time-zones but defaulted to Eastern Standard Time. The administrator can choose one of the timezones and all the timestamps will be in the selected timezone.

4. Logo: The administrator can upload a logo for their company. Max size is 250 KB

5. Icon: The administrator can upload a icon for their company. This icon will be reflected on the mobile app for the respective account. Max size is 100 KB

6. The save button saves all the edits and updates made by the administrator.

Mobile

Mobile settings display the settings which will be applied to the mobile applications at the company level. Mobile Settings like Device is not tempered, enable lock screen and enable full disc encryption for android phones are by default selected and always enabled and cannot be disabled. The other two settings like latest version of mobile OS and latest version of AuthX Authenticator app can be enabled or disabled.

1. Device is not tampered: Whenever a user tries to authenticate into a system with a tampered mobile phone, the user won’t be authenticated.

2. Enable lock screen: This setting has the user enable his lock screen in his mobile phone to authenticate into any application using AuthX Authenticator.

3. Enable full disc encryption for android phones: This setting applies for android phone specifically. The setting requires the user to have full disc encryption in the phone to authenticate themselves.

4. Latest version of mobile OS: This setting requires the user to have the latest version of the mobile OS to authenticate himself into applications using AuthX.

5. Latest version of AuthX app: This setting requires the user to have the latest version of the mobile app to authenticate into applications using AuthX.

Auth Factor

Auth Factor allows administrators to enable and disable authentication factors at the company settings. The auth factors are divided into two sections- Native and Mobile options.

1. Native options: Native options include auth factors like fingerprint and face.

2. Mobile options: Mobile options include auth factors like TOTP, push, face push, palm push, RFID, SMS, Call and Email.

User

User settings allow the administrator to set restrictions on users and the user activity.

1. Lockout and Fraud: This setting allows the administrator to set attributes like auto-lockout threshold, auto-lockout expiration and alert email.

   1. Auto-Lockout Threshold: The owner or admin can input the number of attempts the user is granted to get into an application or portal. If the user exceeds that limit his status is set to Locked Out. The user isn’t given access until auto lockout expiration time has passed.

   2. Auto Lockout expiration: The owner or admin can revert a user’s status to Active after setting certain minutes of time. The owner can choose not to revert the user’s status.

   3. Alert Email- When a user is locked out, an alert email can be sent. All the admins will be notified, or a specific admin is notified, or it is not notified. In the option- “Notify a specific email address”, the field should list individual admins. Multiple admins can be selected here.

2. Inactive User Expiration: The owner or admin can expire users if there is inactivity for certain amount of period. That is, the user status will be inactive, and he will no longer be able to authenticate using AuthX.

Admin

Admin settings allow the administrator to set restrictions on the following,

1. Access to User Portal: Only if this is enabled, user can login into User portal

2. AD functions for Admin: Only if this is enabled, Admin (On-Prem) will have access to AD functions.

3. AD functions for Users: Only if this is enabled, users (On-Prem) will have access to AD functions.

4. Allow user to Unlock account: Allowing user to unlock their account when this is enabled.

5. Allow Admin to assign password: Only if this in enabled, Owner / admin can set a password for In-cloud users

6. Disable addition of in-cloud user: This check box allows the owner or admin to disable adding users manually through the portal without any sync. 

7. User Self Enrollment: Only if this is enabled, user can do the self enrollment in the user portal

8. Web applications for Users: Only if this is enabled, user will have access to manage web applications

EPCS

1. To enable EPCS workflow for the company, check the EPCS enabled option

2. Select the synced/cloud groups to the physician and the enroller groups

   1. After selecting the groups, you can see the EPCS enroller users on Administrator & a new role ‘’EPCS Enroller’’ in update role.

   2. 

      EPCS physicians users will be listed in Users module

3. Check the send enrollment email to synced users to send the enrollment emails to all the en-rollers.

Email Template

1. This functionality extends the ability for a company to customize the email templates and the logos to be used the communication to the end users.

2. Select the template which needs to the edited from the top left corner and edit the template. 

Biometric Settings Value

1. Owner / Admin can update the Biometric settings value here