UltimateSecurity Settings#
Only allow SSO login#
If switched on the users can only sing in into the platform via Single Sign-On, they will not be able to sign in with email/username and password
Enforce 2FA for all non-SSO users#
If switched on the users have to set up Two-Factor Authentication in order to continue using the platform
Whitelist IP addresses#
A list of IP addresses which will not be checked by our Brute-Force Protection. If one of your users has tried more than 15 times to sing in with invalid email and password his IP address is blocked for 15 minutes, you can whitelist his IP address so he/she can sing in without waiting 15 minutes.
Audit Trail#
The Audit Trail provides administrators with a log of security-relevant and data-related events that have occurred in the workspace. It is accessible under Account > Activity.
The activity log tracks the following event types:
| Event | Description |
|---|---|
| Business Objects exported | Objects from a collection were exported |
| Business Model deleted | A Business Model was deleted |
| Business Model property deleted | A property was removed from a Business Model |
| Business Object deleted | A Business Object was deleted |
| Business Object restored | A previously deleted Business Object was restored |
| Business Object user added/deleted | A user was added to or removed from a Business Object |
| Business Object group added/deleted | A group was added to or removed from a Business Object |
| System Integration updated/deleted | A system integration configuration was changed or removed |
| User created | A new user account was created |
| User property changed | A user property (e.g. role, name, email) was changed |
| User password reset | A user password was reset |
| Login from new location | A user logged in from a previously unseen location |
| Brute-Force Protection triggered | The brute-force protection was triggered for a specific IP address |
The activity log can be filtered by:
- Date range — filter events to a specific time period
- Activity type — show only a specific event type
- User — show only events performed by a specific user
- Search — free-text search across event details (e.g. model name, user name, IP address)
See Trust Center