Sessions and Security

go to sessions and security to configure your user sessions, passwords, and encryption details this is also where you specify the length of active user sessions for detail on setting up the authentication section of sessions and security see enable saml for sso docid 8wt38fupydfgp zgrv69t and enable two factor authentication docid 4qozosp3cr6r6du7kwesw setting up login settings as an administrator, you can include banner text on the login page for legal notices or announcements for your swimlane users to set up login settings from the sessions and security dashboard, click > to expand login settings enter text as needed in the editor and click save the text you enter here is displayed as a banner on the swimlane login page setting up proxy settings for integrations swimlane supports global proxy settings for all of your integrations using the proxy settings makes managing your integrations easier and more manageable swimlane supports the http proxy and/or https proxy environment variables to set up proxy settings for integrations from the sessions and security dashboard, click > to expand proxy settings for integrations enter the http proxy address and the https proxy address swimlane will assign the proxy for all integrations under your settings as administrator setting up session timeout parameters as an administrator, you control the amount of time a swimlane session can be active before the user is forced to re authenticate, or log out and log back in to set up session timeout parameters from the sessions and security dashboard, click > to expand the session controls specify the length and the unit of time to be used to measure the user session and click save use the drop down to specify the session unit, hour(s) or minute(s) when you adjust the timeout session parameters here, be aware that users will need to log out and back in in order to for the updated time frame to apply all user sessions will have the previously set timeout value until their current sessions expire or they log out and log back in overriding a user's session timeout administrators can override a specific user's session timeout this is helpful, for example, when you use one swimlane session as a dashboard for a work area the dashboard is useful and visible to many people on the team, and you don't want that dashboard to session to timeout frequently it can also be helpful when you need to immediately disable a user's session in cases similar to these, you can override the user's session timeout to override a user's session timeout from the global navigation menu, select users, groups & roles, and then select users on users, select the user whose session timeout you want to override on the user's profile settings, click the session tab toggle the override this user's session timeout switch, and then specify the time frame for the override (minutes, or hours) the minimum you can specify for this override is 1 minute the maximum is 5 years (43800 hours or 2628000 minutes) click save the override goes into immediate effect once you click save setting up security parameters as an administrator, you have control over password reset intervals and the allowable level of complexity required for user passwords, including enabling two factor authorization for accessing swimlane you also need to specify an administrator email that will be used to notify the swimlane administrator for your organization to set up security parameters from the sessions and security dashboard, click > to expand the password controls specify a password expiration length use the drop down to select the appropriate value for minimum password complexity available values are specify the security notification email for your organization this email receives notifications when user profiles are locked for information about 2fa, see enable two factor authentication docid 4qozosp3cr6r6du7kwesw setting up encryption keys to set up encryption keys from the sessions and security dashboard, click > to expand the encryption controls click change encryption key to modify the original encryption key in a distributed server environment, add an encryption key to a tasks only server by entering the following at the command line dotnet tasks dll key key value when you change the encryption key, you invalidate all of the saved keys in the key store