Skip to main content
Skip to article
  • Qualtrics Platform
    Qualtrics Platform
  • Customer Journey Optimizer
    Customer Journey Optimizer
  • XM Discover
    XM Discover
  • Qualtrics Social Connect
    Qualtrics Social Connect

Security Tab

Was this helpful?


This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

The feedback you submit here is used only to help improve this page.

That’s great! Thank you for your feedback!

Thank you for your feedback!

About the Security Tab

Attention: You are now reading about a premium feature. If you do not have access and would like to purchase access or receive a demo, contact your Account Executive.

All Qualtrics data and brands are protected with the utmost care. However, sometimes you may want additional security settings, such as the ability to track which users are logged in, add more requirements to passwords, modify how many failed logins lead to an account lockout, and so much more.

If you have purchased the Enterprise Security Package, Brand Administrators can access all these settings and more by going to the Admin page and selecting Security.

Choosing admin from the top-level navigation in the top-left of every page of the website

Security tab on the upper-right Admin page

Security Settings

Security Settings is the first section under the Security tab.

Security Settings button in the upper-left of the Security tab

Allow Proxy Logins

Allow proxy logins in the Authentication section

Proxy logins allow Brand Admins or higher privileged accounts to log into different user accounts on this brand through the Users tab. By deselecting Allow Proxy Logins, you are making it so no Brand Admin can directly log into a user’s account.

Attention: Brand Admins can access content in the entire brand, but disabling the Allow Proxy Logins permission will prevent Brand Administrators from acting on behalf of another user.

Enable Two-factor Authentication

Enable two-factor Authentication in the Authentication section

When you select Enable Two-factor Authentication, users must provide a verification code after providing their username and password in order to login. Users can set a preferred method of receiving this code – for example, through email or an authentication app on their phone.

Attention: This option is disabled for SSO users on brands with SSO. If your brand has SSO enabled, then only non-SSO users will be able to use two-factor authentication.

On next login, users will go through the enrollment process where they set up their preferred verification method.

The login screen goes to a section called Two-Step Verification and makes you choose from an option before continuing

Users will also receive an email with backup codes, which serve as a recovery option if they lose access to their verification method. If a user needs to reset their backup codes or reconfigure their two-factor authentication setup, they can do so from their User Settings.

image of the regenerate button for regenerating backup codes in account settings

Once the setup is complete, future logins for that user will use the two-factor authentication process.

On the left, the QR code that goes with a verification app; on the right, the field for the code sent in an email

Users can personally select from a number of authenticator apps, including Google Authenticator, Duo Mobile, and Authy.

Minimum Password Requirements

Fields where you fill out the minimum password requirements

You can customize the requirements of passwords created in your brand. When you leave a field blank, that means that feature is not required in the password. The above example shows the default password requirements.

Attention: Changes made here will apply to all users in your brand. If a user’s password does not fulfill the new requirements, they will be prompted to change their password the next time they try to log in.
Qtip: There are settings for password expiration under the Organization Settings tab.

User Sessions

User sessions settings

  1. Minutes of inactivity until automatic logout: Determine how long someone can be in their account, not navigating pages or making edits, before they are logged out. This can be helpful so that accounts left open on idle screens cannot be accessed by passersby.
    Qtip: The default session timeout is 60 minutes without user activity.
  2. Maximum Concurrent Sessions Per User: Determine how many people can be active in one account at once. If this number is exceeded, the newest user trying to log in will not be allowed into the account.
    Qtip: The default maximum number of concurrent sessions for all brands is 500.

Account Lockout

When a user repeatedly gets the username or password to an account wrong, the system will lock them out. This is a feature available on all Qualtrics brands, which ensures that strangers cannot get access to accounts that don’t belong to them.

However, with the Security tab, you can specify more about how this Account Lockout system works.

Account lockout options

  1. Select the number of failed login attempts.
  2. Select the timeframe within which these login attempts occur.
  3. Select how many minutes the account will be locked before it can be logged into again.
Qtip: If a brand does not have the Security tab feature or the Account Lockout settings have not been modified, by default an account will lock a user out for 60 minutes after 10 failed attempts to login.

Disable Inactive Accounts

Sometimes accounts will sit around in a brand for a long time without any use. It can be tedious to keep track of these accounts individually, and you may not necessarily want to set an account expiration date.

Options for disabling inactive accounts

You can choose to disable accounts after a number of predetermined days. Note that disabling an account will not delete it – you, as the brand administrator, can always re-enable the account.

Attention: If you choose to disable inactive accounts, please note that Qualtrics will consistently assess all inactive accounts and automatically disable any account that meets the condition you selected.
Different conditions you can set when automatically disabling inactive accounts

Active Sessions

The Active Sessions section will show you all the users currently logged in on your brand, plus identifying information.

Active Sessions button in the upper-left of the Security tab

If you see suspicious account activity or you would like to force a user to log out for any reason, select the user(s) and click End Session. Click End All Sessions to end all active sessions.

To adjust the table format, click the down arrow next to a column and select an action.

options to adjust columns within active sessions table

The available actions are:

  • Pin Column: Pin the column so it cannot be moved. This will also make the column visible while you scroll horizontally.
  • Unpin Column: Unpin a pinned column.
  • Move Column Left: Move the column 1 place to the left.
  • Move Column Right: Move the column 1 place to the right.

You can also hover between columns and drag the column divider to change the width of a column.

cursor appearing between columns to adjust column width

 

Activity Logs

In the Activity Logs section, you can see actions users have taken across your Qualtrics organization.

image of activity logs page, where events are listed with timestamps and user names

For each entry, you may see a date, the username or user ID of the account the event happened to, and an event category and name.

In this section, we’ll explain how to use the Activity Log to find information on events. If you want a full list of possible events and what they mean, see Events Tracked in the Activity Log.

Event Details

Clicking an event and a pane on the right opening to show more details

To view more information about an event, click on it. This panel includes a lot of the same information in the columns, plus:

  • Id: An internally generated session ID.
  • Brand Id: Your organization ID.
  • Ip Address: The IP Address where this activity took place.
  • Timestamp: When the event started. Times are always given in the user account’s time zone.

Depending on the event type, there can be other information included about what happened.

Example: If an Admin removes a permission from a role, you’ll see the ID for the role and the name of the permission removed.
Example: If viewing a user’s login session, you’ll also see a termination timestamp, to indicate when the session ended.

Filtering Logs

You can filter your logs by time range, specific events, or search terms. The search supports user IDs, partial and whole usernames, and event types and categories.

To deselect events, click Clear selection.

activity logs menu with time range and events selectors; under the events menu is a clear selection button in blue

Exporting Logs

Qtip: Any filters you use will apply to your exports.
  1. Click Export.
    activity logs menu with time range and events selectors; export button in blue on the right
  2. Choose between CSV (comma-separated values) and TSV (tab-separated values) file types.
    new window where you confirm export and choose file type
  3. Click Export files.
  4. You’ll be taken to Your Downloads, where you can see file status and download it once it’s ready.

Customizing and Sorting Columns

You can sort by any of the columns available. Click the arrow next to a column to move it left or right, or to pin it to the left.

expanding column options

Events Tracked in the Activity Log

The following is a list of event categories and event types tracked in the activity log.

Qtip: The types of events you can audit may change over time.
Qtip: Each event type may take some time before it appears in the audit log.

Admin

Brand change

  • Brand change: The organization has just been created or updated with new permissions. This includes changes to the brand type, base URL, expiration date, and brand description. Each change is indicated by the original value and the new value.

Dashboard settings

Dashboards

  • Dashboard usage: A user has interacted with a dashboard. This includes dashboard editors and viewers.

Datasets

Directories

  • Bulk contact change: A user has uploaded many contacts or changes to existing contacts in XM Directory.
  • Contact export: A user has exported contacts from XM Directory.
  • Contact list operation: A user has viewed, made changes to, or used mailing list options on a contact list in XM Directory.
  • Contact list operation: A user has viewed or made changes to a contact in XM Directory.
  • Directory operation: A user has viewed or made changes to a directory in XM Directory.
  • Directory settings operation: A user has updated XM Directory settings, such as contact frequency, duplicate merging, directory messages, and more.

Distribution

Libraries

  • Library files graphics: A user has viewed or taken action in the library.

Organization

Projects

  • EX program: A Pulse program has been created, edited, or deleted. This event includes changes to the other projects and settings in the larger program.

Public API

  • API access: A user in your organization has performed API calls.

Reports

  • Export printed report: A user has exported an Advanced-Report This includes PDF, DOCX, PPTX, and JPG export types. Does not include EX or 360 reports.
  • Export view results report: A user has exported Results. This includes PDF, DOCX, PPTX, and CSV export types.

Tickets

User Access Control

User Authentication

  • API Token Change: A user generated an API token.
  • Login: View regular, proxy, SSO, and Failed logins. To learn more about a login, click on a user and view the information to the right.
    • Proxy Login will be true if it was a proxy login. You’ll also see additional information under “proxy details,” including the ID of the user who proxied into the account.
    • Is Successful will be false for failed logins.
    • You’ll also see information such as URL the user logged in from, location, how they authenticated (e.g., SAML for SSO organizations), and the platform of login (browser and operating system).
  • Password change: Any time a user changes their own password in the Account Settings
  • Password reset: Whenever a password is reset. This includes users choosing Forgot Your Password? on the login page, Brand Admins sending password resets, or the user having to change their password because the password expired or you set new minimum requirements.
  • Session creation: Any time an account is logged into, thus creating a new session. This is different from Logins because it doesn’t count failures or allow you to check for proxies. If you click a user, it will show when the session ended.
  • Session termination: Every time a session terminates, either because a user logged out or an administrator forced them to. To see which, click the termination and look at the Reason
  • User change: Any time a user is created or deleted. Click a user for more information. Action will show whether the user was edited, created, or deleted. You’ll also be able to see what details were edited.

User Management

  • Brand privilege change: Your Qualtrics organization’s permissions have been changed.
  • Load participants page: A user opened the Participants page in an EX project or the User Admin of a CX Dashboard. Click the event to see the product line (e.g., CX or EX).
  • Modify participant metadata: A participant’s metadata has been updated right on the Participants page in an EX project or the User Admin of a CX Dashboard. Click the event to see the product line.
  • Org hierarchy export participants: Hierarchy participants have been exported.
  • Org hierarchy export units: Hierarchy units have been exported.
  • Org hierarchy import units: Hierarchy units have been imported.
  • Participants management confirm person import: A user has imported a participant file with no errors.
  • Participants management export persons: A user exported participants.
  • Participants management get existing persons: When adding participants, the system has to identify which participants already exist in the directory so they aren’t added to the directory again as duplicates.
  • Participants management get jobs: A user opened Manage Imports/Updates/Exports on the Participants page.
  • Participants management get metadata: When adding participants, the system identifies which participants already exist in the directory, and pulls their metadata.
  • Participants management get metadata mapping: A user managed metadata.
  • Participants management get person information: A user searched for a participant.
  • Participants management mark confirm import: A step that takes place on the back-end once a participant import has been started with no error.
  • Participants management preview person import: Once a participant import has been started, but hasn’t been completed yet, there’s usually a step where you see a summary of the changes.
  • Participants management remove persons: Participants were removed.
  • Participants management update unique identifiers: Participant unique identifiers were updated.
  • Participants management validate person import: A step that takes place on the back-end when importing participants, evaluating the quality of the file. This event is only for Engagement projects.
  • Role change: A role was created, edited, or removed. Click the event to see the product line. Appears for both EX roles and CX roles.
  • Role membership change: A user was added to or removed from a role.
  • Role permission change: Permissions were added to, updated in, or removed from a role.
  • User permission change: Permissions have been created, edited, or removed for a user.

Qtip: A few of these events will happen surrounding the same action, especially if it’s related to participant import. For example, if you import participants onto an engagement project, you usually see the following events, in order:

  1. Participants management validate person import
  2. Participants management preview person import
  3. Participants management mark confirm import
  4. Participants management confirm person import