In Telligent Community 6.0, the Allow Banned Users to Log in setting was removed.
If your community is configured to handle registration and authentication by itself (i.e., not integrated with other applications or with Windows Active Directory to provide authentication), and if you make no other configuration changes, your community:
- Allows anyone who has an approved, registered user account to log in
- Allows visitors to the community to register with:
- Username between three and 64 characters that can include only letters, numbers, underscores, dashes, at signs, and periods while not containing a restricted word.
- Password with no restrictions on characters. A registered user can be reminded of their password via a link in an email sent to his/her registered email address.
When users forget their passwords, they can request a reminder via email. Instead of sending the password in clear text and opening the door to a security vulnerability, Telligent Community generates a unique URL with a temporary token. This temporary token is unique to the user and can only be used once. Furthermore, the token expires within three hours by default. Attempts to reuse a token or use an expired token will be met with an error.
You can almost completely customize the user registration experience by following these instructions as well as those in Customized registration experience, which direct you how to define custom profile fields and profile field groups; edit the mode for the theme, and modify the User Login and Create widget.
Change the user registration experience properties
To change any of these settings:
- Navigate to Control Panel Dashboard > System Administration > Membership Administration > Configuration > Account Settings > Registration Settings.(The following screen capture does not show the whole window.)
- Set the following options:
- Allow login - This option allows or disallows users other than admins to log onto the site.
- Allow new user registration - Allow new users to register by selecting Yes; to prevent visitors from being able to register to be a member of your community, select No.
- Show contact checkboxes - Include two contact options during registration for all users by selecting Yes. We do nothing with these settings, but you can use them to decide whether you can send them email from you and/or from partners. Users can also change these settings after registering via Settings > Email. The two contact options are:
- Allow this site to contact you
- Allow this site's partners to contact you
- Username regular expression pattern - Require usernames to meet your specification by using this expression. All existing usernames do not have to comply with this rule until the user edits his/her settings or an administrator modifies the user's account.
Telligent Community allows only the most common characters to be used in a user name. By default, user names are limited to:
- Alphanumeric characters (A-z, 0-9)
- Underscores (_)
- Hyphens (-)
- Periods (.)
- At signs (@)
If you need more information about how to write a regular expression, read this comprehensive regular expression guide. To allow another special character in user name, you need to add it to the existing default regular expression. For example, if you want to allow apostrophes (') in user names, change the regular expression to ^[a-zA-Z0-9_\-@\.']+$
Generally, your regular expression should start with ^[ (to indicate a search from the beginning of the user name) and end with ]+$ (to indicate any number of those characters that are specified in between). Certain characters must be escaped with a backslash (\) since they have special meaning in regular expressions (e.g., hyphens and periods).
- Username minimum length - No less than three characters.
- Username maximum length - No more than 256 characters.
- Email regular expression pattern - The expression pattern for email IDs.
- Account activation - If the Enable Email property is enabled, all four of the following account activation options will display. (If the property is disabled, only the Automatic and Admin approval options display.)
- Automatic - Visitors can create their own accounts, and they are immediately approved without requiring an administrator to intervene. We recommend that you monitor user account closely in this scenario to ensure that community members are positively contributing to the community.
- Invitation only - Visitors to the site cannot register directly, but must instead be invited to become community members.
- Email - Visitors can create their own accounts, except instead of being able to specify a password, the system automatically sends him/her a password via the email address he/she specified during registration.
- Admin approval - Visitors can create their own accounts, but an administrator must approve a new account request:
- Navigate to Control Panel Dashboard > System Administration > Membership Administration > Members and Roles > Manage Users.
- Click More options and choose Pending approval from the Membership status drop-down list.
- Click Search.
- Any users who aren't yet approved are listed. Click Edit next to each user to review his/her account and, if approved, change Account status pending approval from Unapproved to Approved.
- Click Save changes.
- Password recovery - Specify how a user can recover his/her forgotten password:
- Link. When the user clicks Forgot password? and enters his/her email address, the system sends an email to the user with a link to force the user to change his/her password on the Change Password page. We recommend using this recovery method for the highest security.
- Reset. The system generates a new password and the password is sent in an email to the user.
- Password regular expression pattern - You can do the same for passwords as with usernames via the Password regular expression Pattern setting. When you change this, a new user is unaffected until he/she changes his/her password.
- Click Save to apply the settings.
Change user name restrictions
To change the words that are restricted from being used as usernames for new users who attempt to join after the change (with existing users not being affected):
- Navigate to Control Panel Dashboard > System Administration > Site Administration > Content/Site Security > Username Filters.
- We have provided a default list of words that users cannot use when joining the site.
- You can add additional words by just typing them on a separate line. Please note that a user cannot use a restricted word in ANY part of his/her username, even if not intentionally using a bad word (e.g., "grassley" or "ashitha").
- You can remove words simply by removing that text from the list.
- Click Save changes. The next time a user attempts to join your community, if he/she attempts to use a word in this restricted list, he/she is given an error message and is required to enter a different username.