Settings

System Management > Settings

This section is used to specify and maintain general configuration parameters such as automatic logout idle time; maximum unsuccessful logins permitted; automatic unlock lag time; maximum number of concurrent logins allowed; and the password expiry period, etc.

Use the following fields to complete this page:

  • Automatic Logout time in minutes
    Acceptable range: 0 to 240
    Default: 20 min

    Warning

    Setting this field to 0 disables the automatic logout mechanism and is not recommended.

    If an administrator account remains idle for the specified period of time it will be automatically logged out.

  • Maximum unsuccessful attempts permitted for user logins.
    A greater number of unsuccessful login attempts will result in the administration account being locked, restricting further access to the account.
    Acceptable range: 0 to 9
    Default: 3

    Warning

    Setting this field to 0 disables the automatic locking mechanism and is not recommended.

  • Automatic unlock time in minutes.
    The amount of time after which a locked administrator account is automatically unlocked.
    Acceptable range: 0 to 1440
    Default: 0, which disables automatic unlocking such that all locked accounts have to be manually unlocked by another administrator user with the same or higher access level.

  • Maximum concurrent logins permitted for MIA admin users
    Acceptable range: 0 to 9

    Warning

    Setting the number of concurrent logins to 0 will prevent more than one user logging in at the same time and is not recommended.

  • The administration user Password policy is set using the following fields:

    • Password expiry period determines how often MIA administration users are required to change their MIA login password
      Acceptable range: 0 to 365

    • Minimum password lifetime determines the minimum number of days MIA administration users are required to wait before they can change their MIA login password again.
      Acceptable range: 0 to 90

    • Minimum password length
      Acceptable range: 0 to 32
      0 indicates no minimum length

    • Minimum password numeric characters required
      Acceptable range: 0 to 32

    • Minimum password uppercase characters required
      Acceptable range: 0 to 32

    • Minimum password lowercase characters required
      Acceptable range: 0 to 32

    • Minimum password special characters required
      Acceptable range: 0 to 32.

      Note

      The total number of characters entered for Minimum password numeric characters, Minimum password uppercase characters, Minimum password lowercase characters and minimum password special characters must be less than or equal to the Minimum password length.

  • Registration server URL is the URL of the registration server used to send final and pre-registration requests to the registration server when issuers upload card data files.

  • Time zone is is displayed on the system administration menu bar, from where it can be modified at any time, as and when appropriate. The default time zone is set when the application is installed.
    All reports and results of searches will be based on the time zone specified on the menu bar at the time of the report or search.

  • Disable admin account if inactive for more than a specified number of days.
    Acceptable range: 0 to 365.
    The system will disable an admin account if it has not been accessed for more than the specified number of days.
    To disable, set to 0.

  • AHS timeout in seconds
    Acceptable range: 0 to 3600
    This defines the maximum amount of time the ACS will wait for the Authentication History Server to respond. If a response is not received within the expected time, the ACS will re-schedule the AHS transaction for a later time.

  • Show for the following access levels checkboxes determine which administrator user roles are able to view Card Number (plain text) and AAV/CAVV/AEVV.
    By default, card numbers are masked and AAV/CAVV/AEVV is hidden.

  • Enable manual ACS restart checkbox if you want to defer application of changes that require a restart to the next time the server is manually restarted.
    When this option is selected, if changes require the system to be restarted to take effect, you will be prompted that a restart is required. You can choose to defer the restart or select the option to Restart now.

  • Enable email notification messages checkbox if you want the system to send email messages to administrators for two-factor authentication login or notifications such as expiring license keys.
    You will need to configure the mail server settings for this feature to work.

  • Mail server address, Mail server port, Mail server username, Mail server password and Mail server protocol are used to record the address, username and password of an outgoing SMTP mail server.

    Note

    The sender of the notification messages will be the main administrator user (administrator). Make sure that you have specified a correct email address for this user (use Edit Profile link, while logged in as the administrator).

    Note

    You can test mail server settings by clicking on Send Test Message link. The link will appear once you have entered mail server settings and applied the changes.

  • Log level determines the amount of information generated and routed to console and log file.
    Changes to log level take immediate effect.
    The options are:

    • All: includes any information that can be generated by the application.

    • Debug: information regarding more frequent and minor operations of the system or further.

    • Info: (Default) important information regarding the normal operation of the application or significant events.

    • Warn: warnings are minor errors that may not affect the operation of the system at all. For example a missing feature or component that may not affect the system if you are not planning to use its related functionality.

    • Error: log errors that may affect performance or operation of the system but do not necessarily prevent the system from operating. Logs incorrect behaviour of external components and systems outside the control of the application.

    • Fatal: logs severe problems, imminent system failure, application or component crash.

    • Off: Logging is disabled.

    ActiveAccess currently logs information in a subset of the above levels at Fatal, Error, Warn, Info, and Debug levels. Note that each higher level is inclusive of the messages of lower levels. For example when you set the log level to Warn, you will also see Error messages.

    dc_new.png Database-related log level

    Changing the value of the Log level field in System Management > Settings will apply it to all categories, except DBSettings, which is used for database-related logs. If required, you can update the priority value for all instances of the DBSettings category in AA_HOME/log4j.xml.

    The acceptable values for DBSettings log level are OFF, INFO, DEBUG and TRACE. The log level is set to OFF by default.

  • Apply button to save changes.