You can find this section in HostBill Admin → Settings → General Settings → Other → Security & Display
This option controls when to log out inactive clients.
This option controls when to log out inactive staff members. Note that this behaviour is also affected by the php.ini setting session.gc_maxilifetime
This option controls how many records will be displayed when viewing Clients, Orders, Invoices etc. It affects both admin and client area.
This option allows to choose password restore method:
You can enable captcha verification each time the client attempts to login to your client area.
This option allows to choose downloads extensions, client files and notes in admin portal.
In this section there are two options available:
This option allows to force multi-factor authentication. You can choose to:
When enabled all HostBill generated/parsed links will use HTTPS protocol.
When enabled, customer/admin IP will be verified against original IP that was used to login. This is to prevent from hijacking session data on servers with weak security configuration. If your customers IPs change often they may be logged out because of this option enabled.
You can decide to ban client IP address after a pre-defined number of unsuccessful login attempts.
If you use loadbalancer, proxy, NAT, Cloudflare etc. enter IP address/subnets that your traffic will be forwarded from to get real IP address. The list should be separated by a comma, for example: 192.168.1.10, 172.10.10.0/24
You can choose which URL format should be used: