For safe use of Garoon, you must configure security items.

In Users & System Administration, you can change the restrictions for users to log in, conditions for passwords, and so on.
You can set the following items.

• Whether to enable the automatic completion of login name
• Whether to allow the login name and password to be saved in the Web browser
• Whether to allow automatic login
• Password policies
• The number of failed logins (account lockout) to restrict user login and the duration of account lockout
• Whether to enable SAML authentication

1. Click the administration menu icon (gear icon) in the header.

2. Click Users & System Administration.

3. Click Login in "System Administration".

4. On the "Login Security" screen, set the fields as necessary.

5. Confirm your settings and click Save.

For details, refer to the following page:
Allowing Users to Log in Easily
Specifying Password Complexity and Password Expiration

You can change the settings of Referrer-Policy provided as a Garoon response header.
If you need a referrer when integrating Garoon with external services, change the relevant settings in Users & System Administration.

For details, refer to the following page:
If You Want to Use Referrer for Integration with External Services