# Login Settings

The **Login Settings** feature allows Admin to configure login-related policies to enhance security and manage user session control.

⚠️ **User Right Required:** User must have the permission: **“Is Client Admin - User can manage the Client Profile”**

## **How to use "Login Settings"**

### 🔹 **Step 1: Access to Login Settings**

* Navigate to: **Client Profile => Settings => Login Settings**

<figure><img src="/files/iNYYloLPy1oMWwGMkrIz" alt=""><figcaption></figcaption></figure>

### 🔹 **Step 2:** Set options in Login Settings

### **1. Enforce MFA Login**

Turn on the "Enforce MFA Login" toggle to activate

* When this option is enabled, all users who log in using the email/password method will be required to set up **Multi-Factor Authentication (MFA)** on their next login.
* MFA enhances security by requiring an additional verification step (e.g., OTP code, authenticator app, etc.).

<figure><img src="/files/VoWhQ298qLA0lo7a0zaq" alt=""><figcaption><p>Enforce MFA Login</p></figcaption></figure>

### **2. End Inactive Sessions**

When enabled, the system will automatically log out users who have been inactive for a certain period (this time can be configured). This reduces the risk of unauthorized access if users forget to log out from their devices.

* **Session Duration (minutes):**
  * Define the maximum duration for each login session.
  * After the session expires, users will be required to log in again to continue using the system.
* **Example:** If set to **30**, the login session will automatically end after 30 minutes of inactivity.

<figure><img src="/files/kDJazxLcIGxM18CtvC7c" alt=""><figcaption><p>End Inactive Sessions</p></figcaption></figure>

If you have any questions, don't hesitate to ask, we're always here to help!


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://support.hivo.co/client-profile/client-profile-settings/access-rights-and-security/login-settings.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.