Security & Compliance
AutoCom provides comprehensive security features to protect your organization's data and ensure compliance with security best practices.
Features Overview
Two-Factor Authentication (2FA)
Add an extra layer of security to user accounts with TOTP-based two-factor authentication.
- TOTP Support: Compatible with Google Authenticator, Authy, and other authenticator apps
- Backup Codes: 8 one-time recovery codes for account access
- Secure Setup: Password verification required for all 2FA operations
Login History
Track and monitor all login attempts across your organization.
- Comprehensive Logging: Every login attempt is recorded with detailed metadata
- Device Detection: Automatic detection of device type, browser, and platform
- Suspicious Activity: Flag and monitor unusual login patterns
- Statistics: Get insights into login patterns and security metrics
Learn more about Login History
Audit Log Export
Export activity logs for compliance reporting and security analysis.
- CSV Export: Download logs in CSV format for external analysis
- Date Range Filtering: Export logs for specific time periods
- Type Filtering: Filter by security events, team events, or all activities
- Compliance Ready: Format suitable for security audits and compliance reviews
Security Best Practices
- Enable 2FA: Require two-factor authentication for all admin users
- Regular Audits: Review activity logs periodically for suspicious activity
- Monitor Login History: Set up alerts for unusual login patterns
- Export & Archive: Regularly export audit logs for compliance records
Rate Limiting
AutoCom includes built-in rate limiting to protect against brute force attacks:
- Login Attempts: 5 failed attempts triggers a 15-minute lockout
- API Requests: Standard rate limiting on all API endpoints
- IP-based Tracking: Rate limits are tracked per IP address