Clientexec Security Settings

The Clientexec comes equipped with a Security Section to protect your clients, your installation, and you. In order to configure these settings, navigate to Settings -> Security.

1. Passwords

Enforce Password Strength - Enabling this forces both clients and staff to select a strong password in accordance with the rules you configure below this option.

Allow Admins Override Enforce Password Strength - By enabling this, administrators will not have to abide by the strict password enforcements.

Minimum Password Length - This is the minimum number of characters a password must be.

Forbid dictionary words - By enabling this, users will not be able to enter common words found in the dictionary.

Require Both Uppercase And Lowercase Characters - The password must contain both uppercase and lowercase letters.

Require Numbers - The password must include numbers.

Require Symbols - The password must contain at least one non-alphanumeric character.

2. Application Key

Generation your Application Key - This Application Key lets you integrate Clientexec with third party providers via webhooks to different callbacks.

3. CC Passphrase

What is a Passphrase? The passphrase is created the first time you encrypt a credit card.

Reset Passphrase - You can enter in your old passphrase and enter a new one which will be used when processing credit card invoices.

Delete Passphrase - This will delete the passphrase that was used to encrypt your customer's credit cards. As the warning says, performing this action will require that your customers re-enter their credit card numbers.

4. Banned IPs

BAN IPs generating security warnings - By enabling this, Clientexec will automatically deny system access to requests from IPs that persistently generate security warnings (by issuing malformed requests, trying to access secured areas without permission, etc.). This banning is performed according to the rules in the settings below. 

Number of security warnings triggering a ban - This setting and the following one determine the criteria used to ban an IP: how many security warnings in what lapse of time will trigger a ban.

Ban if matches fraud - Always ban IP if fraud plugin matches the ip as fraud. Note: The Fraud plugin [in Setup -> Plugins -> Fraud] should be enabled for this to work

Lapse of time for counting security warnings (in minutes) - This setting and the previous one determine the criteria used to ban an IP: how many security warnings in what lapse of time will trigger a ban.

IPs never to be banned - These IP's will not be banned from the system.

IPs currently banned - This is where you insert the IPs that you want to ban.

5. Captcha

ReCaptcha Public Key & ReCaptcha Private Key - By not entering a value, Clientexec will utilize its own public and private key. If you would like to use your own keys, you may. ReCaptcha is commonly seen on various submission forms as a universal way to prevent spam.

In order for ReCaptcha to operate, you must navigate to Setup -> Settings -> Products -> Order Pages. Then, find the setting titled "Request Access Code" and enable it.

6. Domain Encryption

DECRYPT PASSWORDS - By clicking this, you will decrypt all the domain passwords in your Clientexec installation. 

ENCRYPT PASSWORDS - By clicking this, you will encrypt all the domain passwords in your Clientexec installation. Encryption is recommended for your data security.