This guide provides technical instructions for SuperAdmins responsible for the management of global system variables, environment parameters, and infrastructure settings within the IUSign platform.
Prerequisites
- Assigned SuperAdmin role.
- Note: Changes to system settings have global impact across all tenants and must be executed with extreme caution.
Strategic Overview
The System Settings module is the central repository for the configuration parameters that govern the entire multi-tenant IUSign environment. These settings define how the platform interacts with external services (SMTP, Storage, API Gateways), manage global security defaults, and control the baseline operational behavior of the document rendering and signing engines. Proper management of these variables is essential for maintaining the stability, performance, and security of the platform at scale.
Core Governance Modules
1. External Service Orchestration
Configure the integration parameters for the platform's core infrastructure dependencies:
- Global SMTP Gateway: Manage the credentials and routing for the primary mail servers responsible for all platform invitations.
- Object Storage (S3/Cloud): Define the bucket names and access credentials for the persistent storage of encrypted document assets.
- CDN Configuration: Oversee the settings for the Content Delivery Network that serves the signing portal's static assets and document previews.
2. Global Security and Compliance Baseline
Enforce mandatory security protocols across the entire platform:
- Encryption Standards: Define the minimum acceptable TLS versions and cryptographic cipher suites for API and Portal traffic.
- MFA Enforcement: Mandate Multi-Factor Authentication for all high-privilege accounts (SuperAdmins and Tenant Admins).
- Rate Limiting: Configure global API and Login rate limits to protect the platform from DDoS and brute-force attacks.
3. Platform Performance and Scaling
Manage the variables that impact system responsiveness:
- Caching Strategy: Define the TTL (Time-to-Live) for rendered document previews and session metadata.
- Maximum Payload Limits: Set the hard caps for document sizes and packet complexity to prevent resource exhaustion.
- Maintenance Windows: Schedule and announce global downtime for system upgrades and database migrations.
Technical Specifications: Global Variables
| Variable Group | Operational Impact | Rationale |
|---|---|---|
| INFRA_SMTP_URL | Mail delivery reliability. | Critical for invitation dispatch. |
| SEC_MANDATORY_MFA | Organizational security posture. | Minimizing account takeover risk. |
| SYS_MAX_DOC_SIZE | Resource allocation. | Preventing infrastructure saturation. |
| UI_PORTAL_BRANDING | Baseline platform aesthetic. | Ensuring a professional default experience. |
Strategic Considerations for Platform Operators
- Change Management: Always test significant system changes in the Staging Environment before promoting them to Production.
- Audit Continuity: Every change to the system settings is recorded in the Global Audit Log, including the SuperAdmin's identity and a "Before and After" snapshot of the variable.
- Disaster Recovery: Maintain a secure backup of the global configuration to facilitate rapid recovery in the event of an infrastructure-level incident.
Diagnostic and Resolution Protocols
| System Observation | Probable Cause | Resolution Protocol |
|---|---|---|
| Global SMTP failure | Credential expiration | Immediately update the gateway credentials and verify the connection using the "Send Test Mail" tool. |
| Tenant creation failing | Hard resource cap | Review the database and storage limits in the system settings and increase capacity if necessary. |
| Rendering anomalies | Version mismatch | Revert to the previous stable version of the signing engine in the configuration module. |