Overview
Security policies allow administrators to configure user identification, e-signature, and session management settings to ensure security compliance. The purpose is to define and enforce security rules. Main functionalities include setting password requirements, enabling e-signatures, and controlling session timeouts. Applications involve creating policies for user access control in solution environments.
On this page:
Configuring Policies
On Security → Policies, there are three main configuration columns that can be important for CFR 11 compliance.
Pre-defined Policies
The platform comes with a few predefined policies that you can use, or you can create your own.
Default
Enhanced
Critical
Security Policies Properties Overview
Column | Description |
|---|---|
Name | Enter a name for the policy. The system allows you to know if the name is not valid. |
Identification | Select the password rules for both editing a project and accessing the runtime.
|
Esign | For runtime only. Select to enable a timeout for the runtime login. Enter the timeout period in minutes.
|
Session | For runtime only. Use to enable a timeout for the runtime session. Select what will cause an automatic logoff, then enter the appropriate values for InactivityMinutes and DurationHours. This setting only logs the user off. The application continues to run.
|
Description | Enter a description for the policy. |
Identification Properties
Contains several password configuration options, detailed below:
Security Identification Properties | |
|---|---|
Property | Description |
AllowPasswordChange | Indicates if a user, other than an administrator, can change its own password. |
PasswordMinLength | Minimum character length for password (0 means no restrictions). |
BlockOnInvalidAttempts | Maximum number of login attempts before blocking user (0 means no restrictions). |
AllowShareUser | Indicates if user can be shared between stations. |
UserNameMinLength | Minimum character length for username (0 means no restrictions). |
PasswordHistory | Remember last passwords (Range: 0-5). |
MinPasswordAge | Minimum password age in hours (0 means no restrictions). |
MaxPasswordAge | Maximum password age in hours (0 means no restrictions). |
BlockAging | Maximum blocking age in hours (0 means no restrictions). |
Esign properties
When enabled, a password will be requested for Action Dynamics with eSign. The password remains valid for a specified timeout time (in minutes).
Security Esign properties | |
|---|---|
Property | Description |
Enabled | Password will be requested for Action Dynamics with eSign is enabled. |
TimeoutMinutes | Timeout in minutes for password with eSign to remain valid. |
Step by Step Esign
Configure the Security > Policies > ESign, enable and set the TimeoutMinutes (e.g.: 1 min). Then, in the Security > Users, set the configured Policy for the User you want. So, open the Draw section, double click in any TextBox object and enable the Security dynamic, now check the ESign required checkbox. Save and Run. Then, log in with the User you set up the configured Policy, and when the timeout minutes expire one dialog to entry the password will appears.
Session properties
User can be logged off according to a determined Inactivity Time (in minutes) and/or after a maximum session duration (in hours).
Security Session Properties | |
|---|---|
Property | Description |
AutoLogOff |
|
InactivityMinutes | Inactivity Time (in minutes). |
DurationHours | Inactivity Time after a maximum session duration (in hours). |
To apply a created session configuration to a User, go to Security → Users (Policies Columns), and select the desired option.
Properties Reference
The Properties References present a reference that describes and explains the properties for Security Policies. The table lists all properties available for the configuration item. However, not all properties described in the documentation are displayed in the data grids by default. Right-click column headers to see which property columns are currently displaying. The displayed properties appear with a check mark.
The data grids allow users to manage and organize information by showing or hiding properties in tables within configuration interfaces. Users can view and select properties via column headers, enable multiple selections, add or remove columns, or reset grid settings. These features are available in all configuration interfaces using a table for data management. To turn on or off showing a property on the data grid, right-click column headers to select properties or use the reset button to return to default settings. Check out Working with DataGrids for detailed info.
Security Policies
Property | Description |
|---|---|
ID | Identifies uniquely the policy record. |
VersionID | Specifies the version of the policy. |
Name | Names the policy. |
Identification | Defines password and username requirements: Allows password change, sets minimum password length, blocks on invalid attempts, allows shared user, sets minimum username length, manages password history, sets minimum and maximum password age, blocks aging. |
ESign | Enables or disables e-signature settings and sets the timeout for it. |
Session | Determines session control settings: Sets AutoLogOff options (None, Inactive, Duration, or Both), and configures InactivityMinutes and DurationHours. |
DateCreated | Records the date when the policy record was created. |
DateModified | Notes the date when the policy record was last modified. |
Description | Describes the purpose or details of the policy. |
In this section: