Skip to content

Security Settings

Configure authentication policy, password policy, session behavior, certificate lifecycle, user permissions, group assertion scope, and two-step verification for your tenant.

  • Authentication Policy — Require strong second factors (TOTP or passkey) tenant-wide
  • Passwords — Password strength, breach detection, forced resets
  • Sessions — Session timeout, persistent sessions, inactivation thresholds
  • Certificates — Certificate validity and rotation windows
  • Permissions — User self-service permissions
  • User attributes — Configure the standard profile attribute catalog and required fields
  • Two-Step Verification — Per-IdP verification requirement and admin resets