Configure password requirements and timeout intervals to secure your Splunk Phantom accounts

You can configure password requirements and set timeout intervals for inactivity to secure your local Splunk Phantom accounts. Accounts that authenticate using single sign-on have their password requirements set by the individual service provider.

Perform the following steps to configure account security:

1. From the main menu, select Administration.
2. Select User Management > Account Security.
3. Configure the desired timeout settings for all local Splunk Phantom accounts.

   Setting	Description
   Inactivity Timeout	The number of minutes with no activity between the user's browser and the web server before the user is logged out.
   Absolute Timeout	The number of minutes after which a local user is logged out, regardless of activity. Some pages, such as the home page and Investigation have constant activity in the form of widgets and dashboards that are updated automatically without user intervention. Setting an absolute timeout is a security precaution to make sure that only authorized users are accessing your Splunk Phantom system.

4. Configure the password requirements for your local Splunk Phantom accounts.

   Setting	Description
   Length	The minimum required length for any user password. This length can be overridden based on other password configurations. For example, if you set the Length to 8 characters, but also require 5 capital letters and 5 digits, then the minimum length of the password is 10 characters.
   Digits	The number of unique digits 0-9 required in the password.
   Special Characters	The number of unique special characters required in the password.
   Capital Letters	The number of unique capital letters required in the password.