Administration > Security & logging

On this screen, you can choose how detailed logs memoQweb should keep; how to handle when someone enters a wrong password too many times; and if users can reset their own passwords.

How to get here

  1. Log in to memoQweb as an administrator.

  2. On the left sidebar, click the Admin Admin icon. icon.

  3. On the Admin screen, click the Security & logging button. The Security & logging screen opens.

    Security and logging window showing Logging level and account Lockout sections with available options.

What can you do?

Logging level defines how much information you will find in memoQweb's logs. You can choose this in the Logging level section. There are five levels:

  • Off: No events are logged.

  • Error: Only error events are logged

  • Warning: Error and warning events are logged

  • Info: Error, warning, and information events are logged.

  • Verbose: memoQweb logs all operations.

In most cases, use the Warning level: It does not use a lot of disk space, but shows all events that report or predict problems.

Do not use the Error or the Off setting, unless your server has very little disk space.

Use the Info or the Verbose setting only if you are trying to pinpoint a tricky problem. These two levels take up a lot of disk space.

The log files are stored on the web server that runs memoQweb, in the C:\ProgramData\ memoQwebNext\Log folder (on all systems).

In memoQ TMS Starter and public cloud deployments of memoQ TMS Essential, this setting is always Warning. Even if you change it, it goes back to Warning the next time you open the page.

Account lockout happens when a user tries to log in with a wrong password too many times. Because this may be because they forgot their password, they can also request a password reset - if that is enabled on the server.

Set this up in the Account lockout section:

Lockout section showing available options - lockout threshold, lockout duration, and reset lockout after. At the bottom, there is the Save button.

To turn on account lockout: Check the User account can be locked out check box. You can set more options:

  • Lockout threshold: Locks the account after 3 invalid login attempts. 3 is the minimum and default value. You can set it higher if needed.

  • Lockout duration: Locks the account for a certain number of minutes. If it is set to 0, the account must be manually enabled by an administrator.

    For example: If a user enters an incorrect password 3 times (Lockout threshold), their user is disabled for 5 minutes (Lockout duration), which means that they can't log in even with the correct password. After another 5 minutes, they can start again and have another 3 tries.

    Alternatively, an Administrator can manually unlock users before the 5 minutes pass.

  • Reset lockout after: If a user tried to log in a few times but has not reached the threshold, memoQ TMS restarts counting the attempts after this time passes.

Administrators will not be locked out: The lockout does not affect members of the Administrators group. Their accounts are never locked.

You can allow users to reset their own passwords. Do this in the Password reset section:

Users can request password reset: When this option is checked, a Forgot password? link appears on memoQweb's sign-in page. When a user clicks it, memoQweb sends them an email to the address in their user profile. When they click the password reset link in the email, memoQweb's password reset page opens. They can enter their new password there.

When this option is cleared, the Forgot password? link is not visible on the sign-in page.

If your account is disabled, you cannot request a password reset.

When you finish

To save your changes, click the Apply changes button at the bottom of the page.