Settings and hotfixes
Session expiration
Indicium main administratormenu Settings > Global settings > tab Form
See Session expiration.
Logging settings
Application retention
main administratorOffline applications are deleted after the retention period has expired. Models and branches are deleted if they no longer have online applications.
menu Settings > Global settings > tab Form > tab Global settings > group Logging
For more information, see:
Application log retention
main administratorLog items for environment monitoring logs, OpenID audit logs, and agent check-in logs are deleted after the retention period has expired.
menu Settings > Global settings > tab Form > tab Global settings > group Logging
For more information, see Application log retention.
System flow log retention
Log items for system flows are deleted after the retention period has expired.
menu Settings > Global settings > tab Form > tab Global settings > group Logging
For more information, see System flow log retention.
Session log retention
main administratormenu Settings > Global settings > tab Form > tab Global settings > group Logging
See Session log retention period.
Metrics for the Thinkwise Platform
main administratormenu Settings > Global settings > tab Form > group Metrics
Thinkwise uses a system flow to collect metrics regarding the usage of the Thinkwise Platform. For more information and how to opt-out, see Scheduled system flows for IAM.
Client redirect
main administratorIf CORS is enabled, and if Indicium is running on a different domain than the Universal GUI, you need to allow the client to redirect back to the domain where the Universal GUI is located. To whitelist global return URLs in IAM:
menu Settings > Global settings > tab Client redirect
- Add one or more Post logout redirect URIs.
See also the Indicium manual:
Email settings
Email providers
main administratorYou can configure a single email provider to send emails from IAM. The email provider is used for notification emails, that contain information on, for example, resetting a password or two-factor authentication, and for other system emails.
To set up an email provider:
menu Settings > Global settings > tab Email provider
- To select an email provider type, select the task Switch email provider type
.
3-tier IAM in the Universal GUI Select the checkbox Use encryption to enter key values that must be encrypted. - Select an Email provider type, for example Microsoft (Graph).
- The checkbox Use managed identity is selected by default. This allows your application to authenticate with the email provider securely, without manually managing credentials. Clear the checkbox if you prefer to use explicit credentials and enter a Tenant, Client and Client secret.
- In the group Sender enter a From address and a From name. These values determine the sender information shown in the email.
If you want to revert your changes, execute the task Reset email provider configuration 
.
This task will reset the email provider settings to the default.
An email provider for notification emails
Encryption of email provider key values
3-tier IAM in the Universal GUI main administratorEncryption is only available in a 3-tier setup, where the Software Factory and IAM are used in the Universal GUI. It is not available for the Software Factory and IAM for the 2-tier Windows or Web GUIs because it requires Indicium support and configuration.
When you are working in a 3-tier environment, we advise you to encrypt the key values of your email providers in the database. The default for your email providers is set in the Software Factory. See Encryption for a branch.
To configure the email provider encryption:
menu Settings > Global settings > tab Email providers
Here you can:
Set email provider key values (encrypted) -
Set encrypted key values for your email provider.
Reset encrypted key values -
Reset the encrypted key values.
You may need to add unencrypted key values here afterward
to ensure that the email provider keeps working.
System email templates
Indicium main administratorA system email is an automated message that is sent by Indicium in response to a trigger. System emails are typically used to send notifications, confirmations, reminders or alerts. For example, when a user's Personal Access Token is about to expire, the system sends out a system email that notifies the user.
For information on how to set up a system email, see System emails.
A system email is not the same as a notification email. A system email is automatically sent by Indicium and its trigger cannot be configured, while a notification email can be sent at any time.
Notification email templates
Indicium main administratorYou can use a notification email to send notifications, confirmations, reminders, or alerts to users. For example, you can send a notification email about upcoming maintenance or to a specific user regarding their account. You can only email users with a registered email address in IAM.
For more information on how to set up a notification email, see Email notifications.
A notification email is not the same as a system email. A system email is automatically sent by Indicium and its trigger cannot be configured, while a notification email can be sent at anytime.
Global translations
main administratormenu Settings > Global translations
Global translations are used when a user logs into a web application, and the user's identity and application language are not yet known.
See Login language for web applications.
IAM system flows
main administratorSystem flows can be scheduled for your applications, but IAM itself also uses system flows for various supporting processes and maintenance. For more information, see Scheduled system flows for IAM.
Hotfixes
main administratormenu Settings > Hotfixes
Shows a list with all hotfixes that are available for download for the current IAM version.
Hotfixes that are already installed have the Applied checkbox selected.