Server Settings

The Server settings dialog box can be found in the menu item Manage. It includes six tabs: General, Connections, Logging, Additional, Email and 2FA Settings.

General

Server

Here you can make basic settings on the server:

Server language: Allows you to select the language.

Server port: Specifies the port by default.

Use SSL/TLS: Enables the use of an SSL/TLS connection between client and server.

Use SSL/TLS for REST Server: Enables the use of an SSL/TLS connection for REST Server connection. With the REST server implementation, the Enterprise Server can now be accessed via REST API. A new web interface is made available in the source code for demonstration purposes or for productive use. Internally it is a web server which can use HTTP or HTTPS (recommended) protocol. In order to use HTTPS, you need to install a valid SSL certificate.

Install certificate: Allows you to install an SSL certificate. If you wish to use this option, a dialog box will open where you can enter your certificate file and its key. 

Databases

Storage folder: You can define the path where databases should be stored by default.

 

Connections

Supported authentications

Specify which authentication you would like to allow on your server. You can use either authentication with User credentials (account and password) and/or Integrated Windows Authentication (Single Sign On) here.

 

Supported clients

Specify which clients should be supported for connection to the server. The following options are available here:

 

NOTE: All clients that should be able to connect to the Enterprise Server need to be activated in the Server Manager. If a client is unchecked here, users won't be able to connect to the Enterprise Server with this edition.

 

New connection from different device

Select one of the three available options here to specify how connections from other devices should be handled if carried out by the same user.

 

Inactive sessions

Specify how Password Depot Enterprise Server should handle inactive connections.

 

Failed logins

Specify the number of failed login attempts a user can carry out before his account will be temporarily blocked. If a user account has been blocked, it can be re-activated again by the server administrator. To do so, open the Server Manager and go to Users -> <USERNAME> -> Accounts and uncheck the box "Account deactivated". 

 

Logging

In this tab you can adjust the settings referring to the Password Depot Enterprise Server's logs. The following options are available here:

 

Local log

 

Additional

In this tab, you can specify your settings for backup copies, among others:

Backup

 

NOTE: By default, both options for creating backups are checked and we further recommend to keep both options activated while working with the server.

 

 

Active Directory:

 

NOTE: Synchronization should preferably be initiated by the administrator manually for a given reason. If automatic synchronization is required, synchronization cycles should preferably be at times when server load is low and, for example, every 24 hours (1140 minutes).

 

Edit entries

 

Email

In this tab you can define your settings for email notifications:

 

 

2FA Settings

You can select here whether you would like users to log in on the server with Two-Factor Authentication. You can choose Two-Factor Authentication with two options: TOTP and email. By activating the option Users may choose to remember their devices (days) the administrator can determine a certain period of time during which users can trust connections to a specific device. In this case, regarding Two-Factor Authentication, it will not be necessary for users to always enter a new code each time they want to connect to the same device in x days if provided that the user enables the option Trust this computer when connecting for the first time and entering the required code once.     

The option Email code expiration time (minutes) determines the validity of a code sent by email for Two-Factor Authentication. By default, this is ten minutes. However, this time can be adjusted here by the server administrator. If a user does not enter the required code in time, the latter expires. A new code will then be necessary in order to authenticate successfully.

Please visit our knowledgebase in order to get more information about Two-Factor Authentication.

 

HINT: Both Integrated Windows Authentication and Password Depot authentication support support Two-Factor Authentication. Under Users -> <USERNAME> -> Accounts Two-Factor Authentication can be deactivated for single users individually, if necessary. Read more about this option in the chapter Add User.