Security Administration

Overview

Access the Security Administration page by navigating to Maintenance > Admin > Security Administration. Define application access security settings. For example, enable IP (Internet Protocol) Logging to create logs containing IP address information, which tracks users logging into the system.

Description of Fields on the Security Administration page

Tenant Group Security Settings - Application Access

Settings are inherited from the Tenant Application and can only be edited if you have security privileges.

• You can force users to change their password after x number of days.

• Define parameters around the password (like number of characters required).

• Select the number of failed login attempts before the user is locked out of the application.

• Disable password checking for SSO users.

• Deactivate user accounts if inactive for x number of days.

• Specify the number of previously used passwords that cannot be used when a user is resetting their password.

Tenant Security Settings - Application Access

Select the appropriate settings. The settings applicable to Consolidation are detailed below. The default setting is enable IP Logging.

• Enable IP Logging – An IP (Internet Protocol) address in a unique set of numbers that represent the computer connected to the system. IP logs contain recordings of IP addresses representing members who have logged on to the system.

• Enable Snapshots in Reports - Allows users to take snapshots of reports.

• Enable Email in Reports - Allows users to send emails with reporting information attached.

• Enforce changing the account properties when the data is available- Allows account properties to be edited when data exists. For Segment Hierarchies, the system properties (i.e. Account Type, Currency Type, Credit/Debit, Normal Data Input Type, and Variance) are disabled for account members if data has already been loaded for these members and the configuration is turned off (for you, the customer). However, if the configuration is turned on, these properties are available to edit (even when data exists for the members). It's important to reload Data Loads and rerun Consolidations to avoid data discrepancies.

• Enable Access to Planful Support Users Until- Allows Planful Support Users to access your application to better help you facilitate necessary tasks or provide additional assistance. If you turn off (do not select this checkbox) Support Access, Planful Support Users will not have access to your application. If you disable this option during a Support User session, the Support User is allowed to continue the session, but may not log in again. Planful Support User information is not available for viewing by your users. The system keeps audit logs of all Support Users that log in to your application.

  • Click the calendar button to provide a date until which Support User access is valid. By default, this option is opened and the date is set to 10 years out. You may edit this date at any time.

• Check cube process status after every _ minutes - Checks the status of the reporting cubes every number of minutes selected and updates the cube icon.