Authentication settings
To adapt general system authentication settings, navigate to -> Administration -> Authentication and choose -> Settings.
You can adapt the following under the authentication settings:
General authentication settings
-
Select if the authentication is required to access OpenProject. Watch out: If you un-tick this box your OpenProject instance will be visible to the general public without logging in. The visibility of individual projects depends on this setting.
-
Select an option for self-registration. Self-registration can either be disabled, or it can be allowed with the following criteria:
a) Account activation by email means the user receives an email and needs to confirm the activation.
b) Manual account activation means that a system administrator needs to manually activate the newly registered user.
c) Automatic account activation means that a newly registered user will automatically be active.
-
Define if the email address should be used as login name.
-
Define after how many days the activation email sent to new users will expire. Afterwards, you will have the possibility to re-send the activation email via the user settings.
Define a registration footer for registration emails
You can define a footer for your registration emails under -> Administration -> Authentication -> Settings.
- Choose for which language you want to define the registration footer.
- Enter a text for the registration footer.
Configure password settings
You can change various settings to configure password preferences in OpenProject.
- Define the minimum password length.
- Define the password strength and select what character classes are a mandatory part of the password.
- Define the minimum number of required character classes.
- Define the number of days, after which a password change should be enforced.
- Define the number of the most recently used passwords that a user should not be allowed to reuse.
- Activate the Forgot your password. This way a user will be able to reset the own password via email.
Other authentication settings
There can be defined a number of other authentication settings.
- Define the number of failed login attempts, after which a user will be temporarily blocked.
- Define the duration of the time, for which the user will be blocked after failed login attempts.
- Enable or disable the autologin option. This allows a user to remain logged in, even if he/she leaves the site. If this option is activated, the “Stay signed in” option will appear on the login screen to be selected.
- Activate the session expiration option. If you select this option, an additional field will open, where you will be able to define the inactivity time duration before the session expiry.
- Define to log user login, name, and mail address for all requests.
- Enable REST web service. This activates an API-Interface, which allows communication between external services (for example MS Office) and the instance.
- Do not forget to save your changes.
Help and feedback
If you did not find what you were looking for
If you need help from the community or want to support others
If you are eligible for professional support and have more questions
REQUEST SUPPORT
If you find an easily fixable error or need for improvement in the documentation for the stable release
If you would like to suggest bigger updates or improvements to this documentation
If you want to contribute to translate this documentation to another language
If there's something you don't like or understand about this feature
If you want to propose a new feature that OpenProject does not offer yet
To further help OpenProject to shape and test new features
To view OpenProject premium features and pricing
If you want to try all premium features in the OpenProject Cloud Edition 14 days for free
If you want to try all premium features in your on premise Community installation 14 days for free