Our security team requires that users who have bee...
# cfml-generalt
TEMann
05/05/2023, 2:24 PMOur security team requires that users who have been inactive on any system for more than 90 days must be deactivated. Does CF Admin have any automation system that deactivates cf admin users who haven’t logged in in a set amount of time?
f
foundeo
05/05/2023, 2:27 PM
no, there is not a feature for that builtin
t
TEMann
05/05/2023, 2:28 PM@foundeo Thank you. I didn’t think so, but I wanted to confirm.
f
foundeo
05/05/2023, 2:35 PM
should be possible to write a scheduled task that checks the
audit.logneo-security.xmlm
Mark Takata (Adobe)
05/05/2023, 3:01 PMIn CF2023 CF Admin can be authenticated using LDAP or SAML, so any built-in time-outs you have in those SSO systems would apply to CF as well.
👍 1
Mark Takata (Adobe)
05/05/2023, 3:03 PMIt should be noted, there is always a master administrator account. This is required in case all other auth ends up turned off to allow access to the administrator. Otherwise you could essentially permanently lock yourself out of the server.
z
zackster
05/05/2023, 3:14 PMimage.png
🤣 2
🤘 2
2 Views