Description: Login details for Lighthouse Transaction Manager (LTM) are customizable to meet several security requirements. This article outlines how to access and edit these settings.
Log into your LTM Account Administrator and navigate to the Settings drop-down, then select Security Settings.
At the User Security page, you can set up a number of restrictions regarding user login for LTM.
Configure the following:
- Security Programs: If attempting to comply with a specific organization's security requirements such as PCI DSS, select this from the list, and the required settings will automatically fill to meet the requirements of the selected security protocol
- Minimum Password Length [Required]: Customize the required minimum digit length from 4 to 16 digits
- Composition Requirements [Required]: Specify if the users must use alpha, numeric, uppercase, or punctuation characters for their login passwords
- Require Password Change: Specify how often a user must update their password, between one week up to one year
- You can also disallow users from using up to their previous 5 passwords
- Lockout Users After [Required]: Set the number of allowed attempts before being prompted for visual verification and the number of failed visual verifications allowed when attempting to log in; failed attempts can be configured from 0-8 failed attempts and failed visual verification allows 1-8
- Lockout Duration [Required]: Determines how long a user is locked out after failing to log in
- Customizable between five minutes to indefinitely
- The default is 30 minutes
- Require User Email Address: Requires that user accounts enter an email address upon sign up
- This changes the user's options of resetting their own login access should they lock themselves out
- Auto Disable Stale Users: Disables a user login after an extended time period of not logging into the user account, customizable between one week up to two years; there is an option to bypass this setting for specific users
- Enforce Scheduled User Work Shifts: Enforces restrictive login times for users
- If a user is past their assigned shift, they will be unable to log in until the specified day/time occurs again
Note: Do not enable this option unless you have already created user shifts and assigned them to your users. Otherwise, you will lock yourself out and your users.
- Require Multifactor Authentication: Requires users to enable either Shift4 Authenticator or Google Authenticator for their user login
- This can be set to Reminder Only or Required
Once you have set all of your required or optional settings, click Apply at the bottom to save these settings.
Note: After selecting Apply, if a current user's password does not meet the current required settings, they will be prompted to change their passwords to the required details upon their next login.
settings, they will be prompted to change their passwords to the required details upon their next login.