Description: Login details for Lighthouse Transaction Manager (LTM) are customizable to meet a number of different security requirements. This article outlines how to access and edit these settings.
Log into your LTM Account Administrator and navigate to the Settings drop-down, then select Security Settings.
At the User Security page, you can set up a number of restrictions regarding user login for LTM.
Configure the following:
- Security Programs: If attempting to comply with a specific organization's security requirements such as PCI DSS, select this from the list and the required settings will automatically fill to meet the requirements of the selected security protocol
- Minimum Password Length [Required]: Customize the required minimum digit length from 4 to 16 digits
- Composition Requirements [Required]: Specify if the users must use alpha, numeric, uppercase, or punctuation characters for their login passwords
- Require Password Change: Specify how often a user must update their password, between one week up to one year
- You can also disallow users from using up to their previous 5 passwords
- Lockout Users After [Required]: Set the number of allowed attempts before being prompted for visual verification and the number of failed visual verifications allowed when attempting to log in; failed attempts can be configured from 0-8 failed attempts and failed visual verification allows 1-8
- Lockout Duration [Required]: Determines how long a user is locked out after failing to log in
- Customizable between five minutes to indefinitely
- The default is 30 minutes
- Require User Email Address: Requires that user accounts enter an email address upon sign up
- This changes the user's options of resetting their own login access should they lock themselves out
- Auto Disable Stale Users: Disables a user login after an extended time period of not logging into the user account, customizable between one week up to two years; there is an option to bypass this setting for specific users
- Enforce Scheduled User Work Shifts: Enforces restrictive login times for users
- If a user is past their assigned shift, they will be unable to log in until the specified day/time occurs again
Note: Do not enable this option unless you have already created user shifts and assigned them to your users. Otherwise, you will lock yourself out and your users.
- Require Multifactor Authentication: Requires users to enable either Shift4 Authenticator or Google Authenticator for their user login
- This can be set to Reminder Only or Required
Once you have set all of your required or optional settings, click Apply at the bottom to save these settings.
Note: After hitting Apply, if a current user's password does not meet the current required settings, they will be prompted to change their passwords to the required details upon their next login.