Skip to main content
Skip table of contents

Managing Tenant Settings

The manage-settings role is required in order to see the Realm Settings menu item and manage the default time zone settings. Eleveo.admin has the manage-settings role assigned by default, as a part of the user-management-admin composite role.

Click User management > Tenant within the navigation tree on the left to display the Tenant Settings screen.

2024-12-10_14-31-11.jpg

Checking Tenant ID

The Tenant ID value can be read at the top of the screen:

2024-12-10_14-33-49.jpg

Configuring the Default Time Zone

It is possible to select a default time zone for all users in the realm. This setting is (by default) set to the time zone selected during the original deployment, but it can be modified by an eleveo.admin or any other user with the manage-settings role. The default time zone setting can be overwritten by selecting a time zone for an individual user.

Select a time zone from the drop-down menu and click Save. Alternatively, click Cancel to abandon the changes.

The default time zone can be overwritten by setting a time zone for a specific user in their user settings:

  • on the Details tab of the Edit user pane, by eleveo.admin. For more details, go to Editing Users.

  • on the User settings page, by users themselves, for more details go to

2024-12-10_14-33-49_1.jpg

Configuring Notifications

To be notified about license expiration, set the Notification of Expiration (days) value. This value defines how many days before the license expiration, an email with a notification will be sent. The email will be sent to all users with a manage-license role. Ensure that all these users have an email address configured in their settings.

The default value is set to 30 days, the maximum value is 99 days.

2024-12-10_14-33-49_2.jpg

Modify the value if needed, then click Save. Alternatively, click Cancel to abandon changes.

Configuring Session Expiration

To configure the session expiration period, configure the values:

  • SSO Session Idle – time period a session can be idle before expiring; afterward, a session expires and a user is logged out (default value: 30 minutes)

  • SSO Session Max – maximum length of a session; afterward, a session expires and a user is logged out (default value: 10 hours)

Note:

  • These values should be 30 minutes by default and should not be changed. This is required by most security standards - such as PCI DSS (15 mins), NIST (30 mins max.), OWASP (15-30 mins). Modifying these values may increase your security risk. Modifying these values may lead to increased risk of unauthorized access to the account, data leakages, session tokens/cookies leakages and even regulatory compliance issues.

2024-12-10_14-33-49_3.jpg

Modify the values if needed, then click Save. Alternatively, click Cancel to abandon changes.

Note that an additional period of two minutes is always added to the configured SSO Session Idle value. As a result, if the configured value is, for example, 30 minutes, a session will expire after 32 minutes. These two minutes are added automatically in the background to support some corner-case scenarios related to the token expiration in cluster and cross-datacenter environments.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close