Security Settings

In Business Manager it's important to configure user password restrictions and login lockout policies. All the possible values ensure compliance with the Payment Card Industry Data Security Standard (PCI DSS).

Note: To comply with the PCI DSS standards, users are logged out of their sessions after 15 minutes of inactivity. You can't change this timeout value.

See Resetting a Business Manager Password and Resetting a Business Manager Password for Administrators.

You can also configure CSRF whitelists. For more information, see CSRF Protection in Business Manager.