Skip to content
GitHub

Security Settings

Security settings in VECTR provides a central location to manage the security of your VECTR instance.

To manage your VECTR security settings:

  1. Log into VECTR as an administrator.
  2. From top navigation, choose the Configuration cog in the top right VECTR Configuration and select Asset Management.
  3. Click on the Settings tab.

Topics

Manage Multi-factor Authentication

Note

This setting is only relevant for local user accounts. SSO users are not bound by this setting.

You can enable a "soft" requirement for the users in your VECTR system to enable and use MFA for local accounts. When enabled, user's will be notified on their profile page that MFA should be enabled.

MFA notification

Password Policy

Note

This setting is only relevant for local user accounts. SSO users are not bound by this setting.

You can enforce a minimum password complexity to ensure that users are using a password that meets requirements set by your organization.

When enabled, you can set a minimum password length and optionally require one or more of the following:

  • Uppercase character
  • Lowercase character
  • Number
  • Symbol

Account Lock Out Policy

As a tool to help mitigate brute force login attempts on your VECTR instance, you can set a lock out policy that will control the threshold for which a user account will be locked out of the system.

The following configurations are supported:

Settings Description
Failed login attempt threshold This represents the number of failed password login attempts before the account in question is locked out.
Failed MFA attempt threshold This represents the number of failed MFA challenges before the account is locked out. Enabling this setting can be helpful to prevent brute force code challenge attempts in the event that a user account's password is compromised and the account has MFA enabled.
Duration of lock out This value determines the number of minutes a locked account will automatically unlock. When unset or the value is zero, a locked account can only be unlocked by a VECTR administrator.
Reset counter duration This value represents the duration in which the failed threshold must occur before an account is locked out. For example, if the "Failed login attempt threshold" value is 5 and the "Reset counter duration" value is 15, then 5 failed password login attempts must occur within 15 minutes from the first failed attempt in order for the account to become locked.