Security
Configure the security settings for your Frontegg application.
Use the Builder to implement the identity protections and password protections that your users need.
Go to the Builder.
Select the Security tab.

The left panel contains the security settings for identity and password protections.
Identity Protection
Select any or all of the identity protection features.
As a group, the identity protections allow you to increase account security by requiring additional proof of identity beyond the typical login credentials.
The identity protection options are listed below and link to relevant guides so that you can learn more.
- Multi-Factor Authentication
- Device Fingerprinting (security layer that associates a user's account with specific devices)
- Session Management
- reCAPTCHA
After you toggle on a feature, configure it.
Click the gear icon to view and edit the configuration options in the left panel.

Device Fingerprinting
If you turn on Device Fingerprinting, update the email template.
Go to Environments ➜ [NAME OF ENVIRONMENT] ➜ Emails ➜ Connect New Device.
When editing the builder, commit your changes and then publish for them to take effect.
Password Protection
If you enabled the password authentication flow, select any or all of the password protection features.
The password protections give you the option to increase account security by enabling settings that minimize password vulnerabilities.
The password protection options are listed below and link to relevant guides so that you can learn more.
- Exposed Credential Detection
- Password Repeat Protection
- Brute Force Protection
If you turn on Exposed Credential Detection, update the email template.
Go to **Environments ➜ [NAME OF ENVIRONMENT] ➜ Emails ➜ Pwned Password.
To enable the password authentication flow, go to Builder ➜ Login Box.
Select password like in the image below.

If you select Password, click the gear next to Email sign on for Password configuration options in addition to those in Security.
Updated 8 months ago