Skip to main content


         This documentation site is for previous versions. Visit our new documentation site for current releases.      
 

This content has been archived and is no longer being updated.

Links may not function; however, this content may be relevant to outdated versions of the product.

Managing security policies

Updated on July 1, 2021

Enable security policies for user authentication and session management to improve application security. You can control the strength of user IDs and passwords, manage session time-outs and the disabling of operator IDs, control the auditing of login events, and implement CAPTCHA and multifactor authentication.

Before you begin: To manage security policies, you must have the pzViewAuthPoliciesLP privilege, which is included in the PegaRULES:SecurityAdministrator role. The password, lockout, audit, and operator ID disablement security policies are supported in offline-enabled applications. Multifactor authentication policies are applied only when two-factor authentication is used in custom authentication policies and in application case flows. The operator disablement policy is not enforced unless the Disable Dormant Operators agent is enabled.
  1. In Dev Studio, click Configure Org & SecurityAuthenticationSecurity Policies.
  2. Configure the following policies:
    • Password policies
    • CAPTCHA policies
    • Lockout policies
    • Audit policy
    • Multi-factor authentication policies (using one-time password)
    • Operator disablement policy
    For more information about security policies settings, see Security policies settings
  3. Click Submit.

Related articles

Defining security policiesConfiguring system settingsPega-RulesEngine agents

Tags

Pega Platform 8.4 Security

Have a question? Get answers now.

Visit the Support Center to ask questions, engage in discussions, share ideas, and help others.

Visit the Support Center

Did you find this content helpful?

Yes
No

Want to help us improve this content?
Suggest an edit

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us