System Settings
Contents
Overview
Access to system-wide configuration settings is made available to administrators by clicking the Settings button on the ITAM main menu.
The System Settings interface allows the administrator to define a variety of system-wide settings. The following will provide an overview of each pane in the System Settings interface.
System Settings
Use SMTP
If outgoing system generated emails such as form notifications are not successful, most likely it will be necessary to enable this option. This will send all emails from the IT Audit Machine through an SMTP server.
Select the checkbox to enable Use SMTP Server to Send Emails option.
SMTP Server: This option allows you to specify a specific host externally located to process SMTP requests instead of ITAM's native capability.
Use Authentication: It's your choice on using authenticated methods of sending ITAM’s SMTP-based messages. We highly recommend doing so.
Use TLS/SSL: Encryption keeps your SMTP message sessions private so should you decide to utilize an alternative to the integrated ITAM SMTP capabilities, use encryption.
SMTP User Name: You will need to provide an SMTP user name with secure SMTP systems.
SMTP Password: You will need to provide an SMTP password with secure SMTP systems.
SMTP Port: This port will vary with SMTP providers so please verify this with them.
SAML for Single Sign On
Base URL: Set a BaseURL to be used instead of trying to guess the BaseURL of the view that process the SAML Message. Ex. http://sp.example.com/
SP Entity Id: Identifier of the SP entity (must be a URI).
NameIDFormat: Specifies constraints on the name identifier to be used to represent the requested subject.
SP x509cert: Usually x509cert and private key of the SP are provided by files placed in the certs folder. But we can also provide them with the SP x509cert and SP PrivateKey parameters.
SP PrivateKey: Usually x509cert and private key of the SP are provided by files placed in the certs folder. But we can also provide them with the SP x509cert and SP PrivateKey parameters.
IDP Entity Id: Identifier of the SP entity (must be a URI)
IDP SingleSignOnService: SSO endpoint info of the IdP. (Authentication Request protocol) URL Target of the IdP where the SP will send the Authentication Request Message.
IDP SingleLogoutService: SLO endpoint info of the IdP. URL Location of the IdP where the SP will send the SLO Request.
IDP x509cert: Public x509 certificate of the IdP.
Security Settings
Enforce Multi-Factor Authentication on users: Select this option to enforce multi-factor authentication for your administrative users which is highly recommended for enhanced security. This feature requires the use of a smartphone. If enabled, all IT Audit Machine users are enrolled in Multi-Factor Authentication. Once enabled, the IT Audit Machine will require a six-digit security code generated by a TOTP authentication mobile application in addition to the standard password whenever they sign in to IT Audit Machine.
Disable Email Based OTP: This feature will disable email-based OTP.
Enable IP Address Restriction: Select this option so that all users can only log in to the IT Audit Machine administrative panel from the IP address listed here. Users from other IP addresses will be blocked.
Enable Account Locking: Select this option to lock an administrator's account for a defined number of minutes after a certain number of invalid login attempts the administrative user will be temporarily locked out of ITAM. It is recommended that this setting match your corporate access control policy.
Enable Session Timeout: If enabled, the user's account will be temporarily locked after several invalid login attempts.
Enable site down: Select this option to force both the User and Admin Portals offline. This action will prevent all accounts except for the primary site administrator from accessing the portal. This is commonly referred to by our customers as the "kill switch".
Allow self-registration in User Portal: If enabled, users will be permitted to self-register an account in the User Portal. It also enables or disables User Portal managers from inviting new users to their Entity or "collaboration group".
Enable Password Expiration: If enabled, the passwords of the ITAM users will expire after a given time period.
Enforce 50% Rule on Passwords: If enabled, the passwords of the ITAM users will be generated automatically. Users will not be allowed to choose their own passwords.
Enable Automatic Account Suspensions for Inactivity: If enabled, the ITAM users including admins will be suspended for inactivity based on the number of days set by the administrator.
Enable Automatic Account Deletion for Inactivity: If enabled, the ITAM users including admins will be deleted for inactivity based on the number of days set by the administrator.
Invite and Password Reset Link Expirations: Generated links for Registrations & Password Resets will be set to expire in days based on the value set, and users will no longer be able to use those links to register or reset their passwords.
Site reCAPTCHA Key: These are required keys to use reCAPTCHA on your forms for SPAM protection.
Secret reCAPTCHA Key: These are required keys to use reCAPTCHA on your forms for SPAM protection.
Miscellaneous Settings
The Miscellaneous Settings pane of the System Settings allows administrators to define and modify a variety of settings such as the default administration theme, default form theme, and default email from address among others. Click the advanced options link at the bottom of the pane to view all of the available setting parameters. The settings parameters should be self-explanatory with additional on-screen help available by clicking and hovering over the green question mark icons.
Advanced Options
Admin Panel Header Image URL: Update the header images located on both the administrative and user portal header sections with the URL of the image's location. This is a nice feature that enables you to customize the environment to better integrate with your needs.
Login Footer Image URL: Update the footer images located on both the administrative and user portal login footer sections with the URL of the image's location. This is a nice feature that enables you to customize the environment to better integrate with your needs.
User Portal Homepage Video URL: The URL of a video file to be displayed on the User Portal homepage. This feature provides a great opportunity for displaying informative and instructional video content to your User Portal subscribers. There are advertising possibilities as well.
Disclaimer message: Set a disclaimer message that shows up in a popup when a user attempts to download a file.
Enable Account Management Notification: If enabled, the administrator will get notified when a new user gets registered.
Enable welcome message notification: If enabled, the user will get a welcome message in a popup window.
Default Email From Name: Update this option with the title of the email subject line you wish to send out to users to help identify the purpose of the email message to recipients. This is the default name being used to send all form notifications and system-related emails from IT Audit Machine (examples: password reset email, form resume email).
Default Email From Address: Update this option with the email address you intend on using to display to recipients from ITAM. It is not recommended that you change this default value. This is the default email address being used to send all form notifications and system-related emails from IT Audit Machine (example: password reset email, form resume email).
IT Audit Machine URL: It is not recommended that you change this default value. Doing so will break certain functionality such as the "Allow Clients to Save and Resume Later" feature.
File Upload Folder: It is not recommended that you change this default value. Doing so will break certain functionality such as file uploads to the system which is a critical feature.
Default Form Theme: Update this option with the theme you want ITAM to default to. We recommend building a theme for your company and defaulting to it bringing a great branding feature to your ITAM experience.
Document Font Family: This font family will be used on every document created.
Form Manager Max List: Update this option with the number of ITAM forms you want to be displayed in the administrative portal's Manage Forms tab.
Remove the "Powered by IT Audit Machine" link from all my forms: Select this option if you intend on "White Labeling" ITAM for your organization's use of ITAM.
Form Export/Import
Some organizations may choose to have multiple instances of ITAM in order to segregate their forms and data along larger business units/channels or because of specific business needs such as compliance with certain industry regulations and/or best practices. However, often many organizations will share similar form requirements. The Form Export/Import Tool allows ITAM administrators to export a form design structure into a file and then import the form file into another instance of the IT Audit Machine. Once imported, the form can be modified within the new instance of ITAM as normal. This can save a significant amount of duplication effort in the development of forms across an organization.
ITAM License
The License Information may be useful when entering a service request ticket and when renewing the license.
Be sure to click the Save Settings button to ensure that any System Settings modifications are applied.
Site Messages
This message will appear to both Admin and Users when the site has been administratively taken off-line.
In this section we covered various System Settings and how they are accessed as well as some of their capabilities. In the next section we will cover the My Profile page and how a user can use it to update information about themselves and to set or change some security options.
[Previous Topic → Template Manager] | [Next Topic → My Profile]