All articles

Advanced Security Settings

Admins on Enterprise accounts can manage advanced security settings.

⏱ 5.5 min read

Overview

Admins on Enterprise subscriptions with the corresponding permission enabled can manage advanced security settings in order to control 2-step verification settings, as well as to customize invitation, attachment and password policy settings.

Invitation Settings

Use invitation settings to:

  • Manage invitation rights. Allow all users to invite new users to join your Wrike subscription or restrict invitation rights to admins.
  • Specify who Regular Users can invite. Allow invitations to be sent to any email address or require that invitees have specific email domains.
  • Decide what type of licenses users can grant when they invite someone.

Change Invitation Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. Use the radio buttons and checkboxes under the “Invitation settings” heading to select the appropriate security settings.
  5. Click “Save Changes”. 

Right to Create Spaces

Use this setting to grant or revoke the right to create new Spaces from regular users.

  1. Click your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. Scroll to the “Create Spaces” section.
  5. Select one of the options to designate who can create Spaces in the account:
    • Owners and all administrators with the permission
    • Regular users, owners, and all administrators with the permission
  6. Click “Save Changes”.

You can also choose which administrators in the account should have the right to create Spaces by editing their admin permissions.

File Storage Settings

Limit which external file repositories the team can use and adjust Google Doc share settings. You can allow users to upload files from Box, Dropbox, Google Drive, Local Storage (computers), YouTube, and/or OneDrive.

For files attached from Google Drive, you can also choose: 1) Not to share Google Docs automatically 2) To automatically share files with users with access to the task 3) To automatically share files with users from the same domain. 

Change File Storage Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. Use the checkboxes and radio buttons under the “File storage” heading to adjust security settings.
  5. Click “Save changes”.

 *Note! If the "Local storage (computers)" option is disabled, users will not have the ability to add images via copy-pasting them into the task description and comments. Images will not be saved after attempts to paste them. 

2-Step Verification

2-step verification provides an extra layer of security to the sign in process: it requires you to enter a time sensitive verification code after you enter your username and password. You can:

  • Choose to make 2-Step verification optional or obligatory for all users.
  • View how many of your users are using 2-step verification (if it’s optional).
  • Download 2-Step verification stats as an XLS file. 

Change 2-Step Verification Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. Use the radio buttons under the “2-Step Verification” heading to choose which security option you would like to apply.
  5. Click “Save changes”. 

Network Access Policy

Use Network Access Policy settings to add approved IP address and IP subnets. Once you add approved IP addresses (or subnets), users are only able to login and access Wrike from those locations. After login, IP addresses are confirmed every five minutes, so if the IP address has changed to an address that isn't approved, the user is logged out within five minutes. 

Even if you specify IP addresses, you can choose to allow mobile users and/or collaborators to login and access Wrike from any IP address.

Please note, if you’re adding an IP subnet then all IP addresses from that subnet are also approved.

Change Network Access Policy Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel.
  4. In the field under “Approved IP ranges or subnets”, enter the IP addresses or subnets which people should be allowed to log in to or access Wrike from. Enter IP subnets in CIDR notation.
  5. If you would like users to be able to log in to Wrike from their mobile devices, irrespective of their IP address, then check the box next to “Allow access from mobile device from any IP address”.
  6. Click “Save changes”. 

Password Strength Policy Settings

Use password strength settings to ensure that passwords meet minimum strength requirements. After password strength settings are turned on, passwords cannot contain: the user’s first name, last name, or their email address. Depending on which password strength you choose (Fair, Good, or Strong) users’ passwords will have to meet additional requirements related to password length and character sets used. The password setting selected affects all regular and external users as well as collaborators.

Click the link “How Password Strength is Measured” on the Password Policies section of the Security tab to see more details regarding password strength setting options.

Change Password Strength Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel and locate the “Password Policies” section.
  4. Locate the “Minimal required password strength” section. 
  5. Select a password strength minimum requirement: Fair, Good, or Strong. 
  6. Click “Save changes”.  

Select "Not set" if you don't want to set minimum password strength requirements. 

How Users are Affected

Users whose passwords do not meet the new settings: will need to change their passwords the next time they attempt to login or, if they are currently logged in, will be logged out of Wrike and prompted to change their password. When users create a password (or change their existing password) it must meet the specified policy settings.

Password History Policy Settings

Use password history settings to specify how often users can reuse their passwords. Adjust settings so that new passwords must be different from the previous: 3, 5, or 10 passwords. The password setting selected affects all regular and external users as well as collaborators.

Change Password History Settings

  1. Click on your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel and locate the “Password Policies” section.
  4. Locate the “Previously used passwords” section.
  5. Select one of the available options: 3, 5, or 10.
  6. Click “Save changes”.

Select “Allow” if you want users to be able to reuse their passwords. 

How Users are Affected

Password history settings are enforced the next time a user changes their existing password and works retroactively. If a user has used their current password more than the accepted number of times, then they are prompted to change it the next time they log in.

Password Expiration Policy Settings

You can require users to change their passwords every 30, 60, or 90 days. The password setting selected affects all regular and external users as well as collaborators.

Change Password Expiration Settings

To require users to change their passwords

  1. Click your profile image in the workspace's upper right-hand corner.
  2. Select "Settings" from the dropdown.
  3. Click "Security" in the left panel and locate the “Password Policies” section.
  4. Check the box next to “Force reset user passwords”.
  5. Specify how often passwords should be changed.
  6. Click “Save changes”.

Leave the box next to “Force password change” unchecked if you do not want to force users to change their passwords. 

How Users are Affected

Wrike will require users to change their passwords once the specified number of days has passed.

Top