Skip to content

Authentication Settings

To configure Data X-Ray to meet your organization's security requirements, a number of authentication settings are available.

A Super admin user can configure these settings on the Data X-Ray Console > Configurations > Authentication.

authentication settings

Account Protection

These settings help you to protect user accounts from unauthorized access attempts.

MFA Required

When this setting is enabled, Data X-Ray requires multi-factor authentication (MFA) for all users.

For more information on configuring MFA, see Multi-factor Authentication (MFA) using TOTP.

Authentication Attempts Before Lockout

Specifies the number of consecutive failed login attempts allowed before the account is locked.

If the limit is reached, the account will be locked for the Lockout Duration. During this time, any login attempts will be rejected, even if the user enters the correct credentials.

If the user logs in successfully before reaching the maximum number of attempts, the counter resets to zero.

The default value is 10 attempts.

Lockout Duration

Specifies the duration, in hours, for which the account will be locked after exceeding the maximum number of failed login attempts.

The account lockout will be lifted after the specified duration has passed, or if an administrator manually unlocks the account by generating a new temporary password for the user.

The default value is 24 hours.

Password Policy

These settings allow you to enforce password security policies for your users.

For more information on password policy, rules and security features, see Password policy.

Password Expiry Enabled

Enables password expiration. When enabled, users will be required to change their password after a specified number of days.

Password Expiry Duration

Specifies the number of days after which the password will expire. Users will be prompted to change their password when it expires.

The default value is 90 days.

Reset Password Token Duration

Specifies the duration, in minutes, for which the password reset token is valid. After this period, the token will expire, and users will need to request a new one.

The default value is 5 minutes.