Security Settings
Security Settings is the core protection module of the AngusGM platform, providing system-level security policy configuration capabilities to comprehensively safeguard user account security and data privacy. It employs multi-layered defense mechanisms to mitigate risks of unauthorized access and malicious attacks.
Core Features
1. Identity Authentication Security
- Brute Force Protection: Automatically locks accounts after consecutive failed login attempts (
default: 30-minute lockout) - Suspicious Login Detection: Identifies logins from uncommon devices/IP addresses
- Session Timeout Control: Configures automatic logout due to inactivity (
default: 6 hours)
2. Account Registration Management
- Registration Toggle: Enables/disables user self-registration
- Manual Approval Mechanism: Sets up administrator review for new registrations (future support)
3. Password Policy Enhancement
- Strength Rules Configuration:
- Mandatory Update Cycle: Configures maximum password validity period (future support)
- Password History: Prevents reuse of last 5 passwords (future support)
4. Account Lifecycle Management
- Self-Service Deletion: Users may initiate account deletion requests online
- Data Cleanup: Configures personal information handling rules post-deletion
- Retention Period: Sets auto-deactivation period for dormant accounts (
default: 24 hours)
Automatic deletion applies only to cloud service versions.
5. Real-Time Security Protection
- Risk Alerts:
Risk Type Trigger Condition Response Action Abnormal Login Unusual location/IP jump Secondary Verification Password Leak Dark web data match Forced Reset Bulk Operations High-frequency sensitive actions CAPTCHA Verification - Audit Logs: Records all critical security events and configuration changes
- Notification System: Real-time security alerts pushed to administrators