Login

In the Login tab, you can configure login settings.

You have the ability to establish various post-login options available to end users.

User Registration

This toggle button controls the visibility of the Register option on the login screen. When activated or toggled ON, end users can see the Register option; when deactivated, this particular option will not be present.

Email as username

When turned ON, users can only log in via Email as shown above.

When turned OFF, users can log in using both Username and email as shown below.

Edit Username

This toggle button enables the Admin User to edit the Username field.

Go to the Users tab.

Click on View All Users.

Then click on the Edit button.

When the toggle button is ON, the Username field becomes editable.

If disabled or turned OFF, the Admin User cannot edit this field; it remains visible but as a read-only field.

Forgot Password

When the toggle button is turned ON, it allows the End user to view the Forgot Password? field. Disabling it removes access to the Forgot Password? button.

Remember Me

On turning the toggle button ON, it allows users to view the Remember Me button on the login screen.

If turned OFF, the option will not be visible.

Verify Email

When toggled ON, the users are required to verify their email address after initial login or any subsequent address changes.

If turned OFF,it removes the need for email verification.

Login with Email

When turned OFF, the users can log in using only the Username.

When turned ON, users can log in using either the Username or Email.

Duplicate emails

This is a toggle button, when activated (toggled ON), it allows multiple users to share the same email address.

If turned OFF, users cannot use the same email address.

Changing this setting clears the user cache automatically.

It is advisable to manually update the email constraints for existing users in the database after disabling support for duplicate email addresses.

Require SSL

When All Requests is selected from the dropdown, SSL is mandatory for all requests.

On selecting External Requests, SSL will be required for only External Requests

In case None is selected, it eliminates the requirement for SSL in any request.

ACR to LoA Mapping

Here, in the Login settings of a Realm, you can specify which Authentication Context Class Reference (ACR) value is mapped to which Level of Authentication (LoA).

The ACR values can vary, but the LoA must be numeric.

This mapping can also be configured at the client level if different values are needed than the Realm.

Adhering to realm mappings is generally recommended for consistency.