Accounts
    • Dark
      Light
    • PDF

    Accounts

    • Dark
      Light
    • PDF

    Article summary

    You can modify the workspace member account settings by navigating to Administration > Workspace > Settings > Accounts.

    Below are the basic account configuration settings. Most of the settings can be either enabled or disabled.

    • Allow Anonymous Read: If enabled, people can use the chat without creating an account or logging in. Anonymous users are only allowed to read messages on public channels.

    • Allow Anonymous Write: If enabled, anonymous users can post messages on public channels.

    • Allow users to Delete Own Account: If enabled, users can delete their accounts. When a user is deleted, all their messages are deleted too.

    • Allow User Profile Change: If disabled, blocks users from changing the information on their profile.

    • Allow User Avatar Change: If disabled, users are blocked from changing their avatar.

    • Allow Name Change: If disabled, users are blocked from changing their names.

    • Allow Custom Status Message: Setting this to true allows users to create a custom status message.

    • Allow Username Change: Setting this to false blocks users from changing their usernames.

    • Allow Email Change: Setting this to false blocks users from changing their email.

    • Allow Password Change: Setting this to false blocks users from changing their password.

    • Allow Password Change for OAuth Users: Setting this to false blocks OAuth users from changing their password.

    • Allow Email Notifications: Setting this to true enables the users to receive email notifications.

    • Allow Feature Preview: If enabled, grants access to unreleased developmental features.

    • Custom Fields to Show in User Info: Other fields to be displayed in the user info. Refer to Custom Fields.

    • Login Expiration in Days: The number of days after which a user is logged out if they are inactive.

    • Placeholder for Email or Username Login Field: This changes the placeholder for the email or username field on the login screen.

    • Placeholder for Password Login Field: This changes the placeholder for the password field on the login screen.

    • Confirm Placeholder for Password Login Field: This confirms the placeholder for the password field on the login screen.

    • Forget user session on window close: This logs out users when they close the window running Rocket.Chat.

    • Fields to Consider in Search: Specifies the fields to be considered when searching for users. The default is username, name, bio, and nickname.

    • Default Directory Listing: This sets the default directory to be listed on your workspace.

    • Allow Invisible Status Option: Setting this to true allows users to set the invisible status.

    • Reset defaults: Clicking the button returns configurations to their default value.

    Two-factor authentication

    • Enable Two Factor Authentication: Enable or disable Two Factor Authentication for users and set for how long a token is valid.

    • Maximum Delta: Let you set the number of valid tokens at any given time.

    • Enable Two-Factor Authentication via TOTP: Set whether or not users can set up two-factor authentication with authentication apps like Google Authenticator.

    • Enable Two Factor Authentication via Email: Sets whether users receive emails with a temporary code to authorize some actions.

    • Make two factor via email available for oAuth users: When enabled, users signing in through OAuth providers (e.g., GitHub, Google) will receive an email with a temporary code to authorize actions such as logging in, resetting E2E keys, and more.

    • Auto opt in new users for Two Factor via Email: When enabled, users have the Two-Factor Authentication via Email enabled by default. This can be disabled on their profile page.

    • Time to expire the code sent via email in seconds: Set the time (in seconds) for how long the two-factor code sent to a user's email is valid.

    • Maximum Invalid Email OTP Codes Allowed: Sets the maximum number of invalid email OTP codes before auto-generating a new code.

    • Remember Two Factor for (seconds): This lets you set how long in seconds users won't be able to request an authorization code if it was already provided.

    • Enforce password fallback: Enabling this setting forces users to enter their passwords to perform some important tasks.

    Default user preferences

    Default user preferences for notifications are universal for all the users in your workspace until a user changes it for themselves.

    • Enable Auto-Away: When set to true, it automatically changes the user's status to Away when they exit Rocket.Chat.

    • Idle Time Limit: Sets how long in milliseconds for a user to go idle.

    • Require Interaction to Dismiss Desktop Notification: Enabling this sets the notification prompt active until the User interacts with it.

    • Desktop Notifications Default Alert: This lets you set when the desktop notification alert is triggered. The default is All messages. This only concerns the groups and channels the user belongs to.

    • Push Notifications Default Alert: This setting allows users to choose whether to receive push notifications. The default is All messages.

    • Unread Tray Icon Alert: Disabling this stops the unread tray icon from displaying.

    • Use Emojis: Setting this to false disables the use of emojis.

    • Convert ASCII to Emoji: ASCII characters are converted to emojis when this setting is enabled.

    • Auto Load Images: Turning this off prevents images from auto-loading when a room/chat is opened.

    • Save Mobile Bandwidth: When enabled, acts like a data saver.

    • Collapse Embedded Media by Default: Setting this to true causes embedded media cards to collapse.

    • Hide Usernames: When enabled, it'll hide usernames in conversation rooms.

    • Hide Roles: When set to true, user roles like admin and moderator are not shown in chat rooms.

    • Hide Contextual Bar by clicking outside of it: Enabling this hides the right sidebar.

    • Display Avatars: Setting this to true displays the user's avatars in chat.

    • Group by Type: This lets you group conversations by type.

    • Theme Appearance: This allows you to set the theme of the workspace. The default is Match System, which matches your device’s theme.

    • Sidebar Channel List Mode: This mode lets you choose the sidebar size, from Extended to Medium to Condensed.

    • Display Avatars in Sidebar: Disabling this disables avatars from showing in the sidebar.

    • Unread on top: Turning this on displays all unread messages at the top.

    • Sort by: This lets you sort the list by user activity or alphabetical order.

    • Always show thread replies in main channel: If enabled, show thread messages in the room; otherwise, let the user decide on the display.

    • Also send thread message to channel behavior: Select the behavior of messages sent in a thread.

    • Group favorites: Setting this to false disables favoriting groups.

    • Enter key Behavior: Lets you configure the action of the Enter key. The available options are: Normal mode (send with Enter), Alternative mode (send with Enter+Ctrl/Alt/Shift/CMD), and Desktop mode (only sends with enter on desktop)

    • Offline Email Notifications: Lets you set when users should receive email notifications. The available options are Disabled and Every Mention/DM.

    • New Room Notification: Configures the notification when a new room is created/joined.

    • New Message Notification: Lets you select the notification for new messages. The default options are None and Default.

    • Mute-Focused Conversations: When set to true, no notifications are sent for focused/open conversations.

    • Notifications sound volume: Lets you set the notification volume.

    • Send chat transcript via email: If enabled, the transcript is sent to contacts at the end of the conversations.

    • Notify calendar events: If enabled, notify users of calendar events.

    • Enable mobile ringing: Allows ringing on mobile for new calls.

    • Sidebar sections order: As an admin, you can select and change the order of room categories displayed on the left-hand sidebar. The available options are:

      • Incoming calls

      • Queued chats

      • Chats in progress

      • On hold

      • Unread

      • Favorites

      • Teams

      • Discussions

      • Channels

      • Direct messages

      • Conversations

    • Accounts Default User Preferences Features Preview: Shows all the feature preview settings selected by the user.

    Avatar

    • Resize Avatar: Set this to true to resize user avatars to a predefined size. This feature requires ImageMagick or GraphicsMagick installed on your server.

    • Avatar Size: The desired size after the avatar resizing. The unit is pixels (px).

    • Avatar External Provider URL: Lets you set a URL from which avatars can be loaded. Example: https://acme.com/api/v1/{username}.

    • Room Avatar External Provider URL: The URL where the room avatar is loaded from.

    • Avatar cache time: This sets how long in milliseconds users avatar is to be cached.

    • Block Unauthenticated Access to Avatars: When enabled, this feature restricts unauthenticated users from accessing avatars.

    • Set Default Avatar: If this setting is set to true, Rocket.Chat tries to find a default avatar based on OAuth Account or Gravatar.

    Iframe

    • Enabled: Enable this option to authenticate users using your own login page instead of Rocket.Chat's login page via the iframe integration.

    • Iframe URL: Enter the URL of the page you want to show as the login page of your Rocket.Chat instance. The login page then communicates back to Rocket.Chat using postMessage API.

    • The Login page can be created in any programming language and/or web framework.

    • Setting API URL and API Method parameters enables Rocket.Chat to call the third-party system to either log in or verify if the user is already logged in.

    • API URL: Enter the URL, which refers to the endpoint on the third-party system. This checks if the user is already logged in to that system.

    • API Method: Specify the API (POST) method Rocket.Chat will use to submit information to the API URL.

    If the user has already logged into the third-party system, the API URL should communicate to Rocket.Chat and return a JSON object containing either a token or loginToken property, otherwise (if the user is not already logged in) the API URL should return an empty body with the status 401.

    Failed login attempts

    • Enable collect login data: When set to true, it allows for collecting failed login attempts.

    • Block failed login attempts by Username: Blocks failed login attempts with username.

    • Amount of failed attempts before blocking user: This option lets you set the number of failed login attempts before blocking the user.

    • Duration of user block (in minutes): Sets in minutes how long to unblock a user after blocking.

    • Block failed login attempts by IP: Enables the blocking of IP addresses after failed login attempts.

    • Amount of failed attempts before blocking IP address: This lets you set the number of failed login attempts before blocking an IP address.

    • Duration of IP address block (in minutes): Sets how long to unblock a blocked IP.

    • IP Whitelist: Takes in a list of comma-separated IP addresses to be whitelisted.

    • Notify of failed login attempts: When set to true, a channel is notified of all failed login attempts.

    • Channel to send the notifications: Specifies the channel to which the failed login attempts are sent. We recommend you create the channel first without the # symbol in the channel name.

    Login logs

    • Log (on console) failed login attempts: Logs all failed login attempts on the console.

    • Show Username on failed login attempts logs: When enabled, usernames are shown on the console for all failed login attempts.

    • Show UserAgent on failed login attempts logs: Shows the user agent on failed login attempts when enabled.

    • Show Client IP on failed login attempts logs: When set to true, it shows the client IP address on the console on any failed login attempt.

    • Show Forwarded IP on failed login attempts logs: Show the forwarded IP on any failed login attempts.

    Password history

    • Enable Password History: When enabled, users won't be able to update their passwords to some of their most recently used passwords.

    • Password History Length: This lets you set number of most recently used passwords to prevent users from reusing them.

    Password policy

    • Enable Password Policy: When this is set to true, new passwords must follow the corresponding configured policies.

    • Minimum Length: Ensures that passwords must have at least this amount of characters. Use -1 to disable.

    • Maximum Length: Ensures that passwords do not have more than this amount of characters. Use -1 to disable.

    • Forbid Repeating Characters: Ensures passwords do not contain the same character repeating next to each other.

    • Max Repeating Characters: Set the number of times a character can be repeated before it is not allowed.

    • At Least One Lowercase: Enforce that a password contains at least one lowercase character.

    • At Least One Uppercase: Enforce that a password contains at least one uppercase character.

    • At Least One Number: Enforce that a password contains at least one numerical character.

    • At Least One Symbol: Enforce that a password contains at least one special character.

    Registration

    • Send email to user when user is activated: When enabled, an email is sent to the user after their account has been activated.

    • Send email to user when user is deactivated: If set to true, users get an email after account deactivation.

    • Default username prefix suggestion: This is the prefix that is suggested when a user is creating a username. Default is user.

    • Require Name For Signup: If this is set to true, the name of the user is required to create an account.

    • Require Password Confirmation: If this is set to true, the user has to input their password twice when registering.

    • Only allow verified users to login: Enable this option only to allow the verified users only to log in.

    • Mark Email for External Accounts Verified: If this is set to true, users has to confirm their email via a confirmation email sent to their email. (For this setting to work, the SMTP settings must be already set up. See Email Configuration)

    • Manually Approve New Users: If this is set to true, new users have to wait for a user with the view-user-administration permission to approve their account before using Rocket.Chat.

    • Allowed Domains List: This blocks emails with domains different from the ones on the list.

    • Blocked Domains List: This blocks emails with domains that are on the list.

    • Blocked Username List: This blocks usernames that are on the list.

    • Use Default Blocked Domains List: Blocks the email domains listed here.

    • Use DNS Domain Check: When this is set to true, users cannot register with invalid domains.

    • Registration Form: This changes how the registration form is presented. Currently, there are 3 options:

      • Public: The form is made public, and anyone can access it.

      • Disabled: The form is disabled, and users can not register through it.

      • Secret URL: The form is only accessible using a specific URL.

    • Registration Form Secret URL: String to be added to the secret URL. A random string is recommended for that. Example: https://open.rocket.chat/register/[secret_hash].You can copy this URL to share the form with anyone.

    • Invite URL Type: URL type can either be direct or through a proxy.

    • Registration Form Link Replacement Text: Text to be shown in place of the registration form when the registration form is disabled.

    • Registration with Authentication Services: Set this to true to allow registration with third-party authentication services like Google or Twitter.

    • Default Roles for Authentication Services: Default roles users are given when registering through authentication services.

    • Default Roles for Users: Default roles users are given when registering through manual registration.

    • Password Reset: Set this to true to allow users to reset their password.

    • Custom Fields: A valid JSON key-value pairs of additional fields to be added during user registration.


    Was this article helpful?

    ESC

    Eddy AI, facilitating knowledge discovery through conversational intelligence