Skip to main content

Settings

The Settings page at Admin → Settings (/admin/settings) is the central configuration hub. It is organised as a set of tabs — pick the right tab from the table below for the dedicated deep-dive:

TabURLWhat it controlsFull guide
General/admin/settings?tab=generalAppearance (logo, favicon, currency, date format, enabled languages, fiscal year), email delivery, module toggles (BPM, PPM, GRC, TurboLens, Sponsor button)This page
Authentication/admin/settings?tab=authenticationSSO providers, registration, password policyAuthentication & SSO
AI/admin/settings?tab=aiLLM provider, model, web search backend, per-card-type AI suggestion togglesAI Capabilities
EOL/admin/settings?tab=eolMass-linking products to endoflife.date entriesEnd-of-Life (EOL)
Web Portals/admin/settings?tab=web-portalsPublic read-only portal slugs, visibility filtersWeb Portals
ServiceNow/admin/settings?tab=servicenowServiceNow connection, sync configuration, identity mappingServiceNow Integration
TurboLens/admin/settings?tab=turbolensTurboLens-specific toggles, enabled regulations, analysis pollingSee section TurboLens settings below

The rest of this page covers the General tab.

General Settings

Appearance

Upload a custom logo that appears in the top navigation bar. Supported formats: PNG, JPEG, SVG, WebP, GIF. Click Reset to revert to the default Turbo EA logo.

Favicon

Upload a custom browser icon (favicon). The change takes effect on the next page load. Click Reset to revert to the default icon.

Currency

Select the currency used for cost fields across the platform. This affects how cost values are formatted in card detail pages, reports, and exports. Over 20 currencies are supported, including USD, EUR, GBP, JPY, CNY, CHF, INR, BRL, and more.

Date Format

Choose how dates are displayed throughout the application. The selected format applies to card lifecycle dates, the inventory grid, ADR and SoAW signed dates, the Risk Register, PPM reports and tasks, BPM process flow versions, comments, history, the dashboard activity feed, notifications, and admin pages. Five formats are offered with a live preview as you choose:

  • MM/DD/YYYY — US style (e.g. 04/29/2026)
  • DD/MM/YYYY — European style (e.g. 29/04/2026)
  • YYYY-MM-DD — ISO 8601 (e.g. 2026-04-29)
  • DD MMM YYYY — default (e.g. 29 Apr 2026)
  • MMM DD, YYYY (e.g. Apr 29, 2026)

Changes take effect immediately for everyone — no reload required.

Enabled Languages

Toggle which languages are available to users in their language selector. All eight supported locales can be individually enabled or disabled:

  • English, Deutsch, Français, Español, Italiano, Português, 中文, Русский

At least one language must remain enabled at all times.

Fiscal Year Start

Select the month that begins your organization's fiscal year (January through December). This setting affects how budget lines in the PPM module are grouped by fiscal year. For example, if the fiscal year starts in April, a budget line dated June 2026 belongs to FY 2026–2027.

The default is January (calendar year = fiscal year).

Data management

Control how long archived cards are retained before they are permanently deleted.

When a card is archived it is hidden from the inventory, reports, and relations, but it keeps its full history and can be restored at any time before it is purged.

FieldDescription
Retention period (days)Number of days an archived card is kept before it is permanently deleted. The default is 30.
Keep archived cards indefinitelyWhen enabled (retention set to 0), archived cards are never auto-deleted and are retained — with their history — indefinitely.

The purge job runs hourly and re-reads this setting on each run, so changes take effect without restarting the application. Archive banners and confirmation dialogs reflect the configured period automatically.

Email

Turbo EA sends invitation emails, survey notifications, password resets, and other system messages. Choose a sending method that matches your mail platform.

Basic SMTP authentication is being retired

Microsoft 365 is disabling basic SMTP authentication (unavailable for new tenants, removed for existing ones across 2026–2027) and Google Workspace disabled it in March 2025. For those platforms, use one of the OAuth methods below instead of a mailbox password.

Sending methods

MethodWhen to use
SMTP (username & password)Classic SMTP for servers that still accept basic auth. The default.
SMTP with OAuth 2.0 (XOAUTH2)SMTP authenticated with a short-lived OAuth token — Microsoft 365 (app-only) or Google Workspace (service account).
Microsoft Graph APIApp-only Microsoft Graph sendMail. The recommended Microsoft 365 option — no SMTP, no stored password.

Common fields

FieldDescription
From AddressThe sender address for outgoing messages
App Base URLThe public URL of your instance (used in email links)

SMTP (username & password)

FieldDescription
SMTP HostYour mail server hostname (e.g., smtp.gmail.com)
SMTP PortServer port (typically 587 for TLS)
SMTP UserAuthentication username
SMTP PasswordAuthentication password (stored encrypted)
Use TLSEnable STARTTLS encryption (recommended)
  1. In Microsoft Entra ID → App registrations, create a dedicated app registration.
  2. Under API permissions, add the Mail.Send application permission and grant admin consent.
  3. Create a client secret under Certificates & secrets.
  4. In Turbo EA, choose Microsoft Graph API and enter the Tenant ID, Client ID, Client secret, and the Sender mailbox (the user principal name mail is sent from).

No mailbox password is stored; Turbo EA requests a short-lived token for each send.

The From Address is optional with Graph: leave it at the default to send as the sender mailbox. Setting a different address requires a Send As grant for that address on the sender mailbox.

SMTP with OAuth 2.0

  • Microsoft 365: enter the Tenant ID, Client ID, and Client secret of an app registration, plus the Sender mailbox. SMTP AUTH must be enabled for the mailbox.
  • Google Workspace: choose Google, paste the service-account key (JSON) with domain-wide delegation enabled for the sender mailbox, and set the Sender mailbox to impersonate.

The Scope and Token endpoint fields are optional overrides — leave them empty unless your tenant requires custom values.

After configuring any method, click Send Test Email to verify it works.

note

Email is optional. If no method is configured, features that send emails gracefully skip delivery.

BPM Module

Toggle the Business Process Management module on or off. When disabled:

  • The BPM navigation item is hidden from all users
  • Business Process cards remain in the database but BPM-specific features (process flow editor, BPM dashboard, BPM reports) are not accessible

This is useful for organizations that do not use BPM and want a cleaner navigation experience.

PPM Module

Toggle the Project Portfolio Management module on or off. When disabled:

  • The PPM navigation item is hidden from all users
  • Initiative cards remain in the database but PPM-specific features (status reports, budget & cost tracking, risk register, task board, Gantt chart) are not accessible

When enabled, Initiative cards gain a PPM tab in their detail view and the PPM portfolio dashboard becomes available in the main navigation. See Project Portfolio Management for the full feature guide.

GRC Module

Toggle the Governance, Risk and Compliance module on or off. When disabled:

  • The GRC navigation item is hidden from all users
  • The /grc workspace (Governance principles and ADRs, Risk Register, Compliance findings) is unreachable and shows the standard "module disabled" placeholder for anyone with a direct link
  • The Risks and Compliance tabs on Card Detail are hidden, so individual cards no longer surface GRC data either
  • Risks and compliance findings remain in the database — the underlying risks.* and compliance.* permissions are unchanged, so the data is preserved and re-appears unchanged if the module is re-enabled

See the GRC guide for the full feature reference.

Show or hide the Sponsor button in the user (avatar) menu. When hidden, users no longer see the Sponsor button in their profile menu. The Sponsor button — and the dialog explaining how to support Turbo EA — always remains available from this settings panel, so administrators can still reach it even when it is hidden from the menu.

If your company sponsors Turbo EA and would like its logo featured on turbo-ea.org, reach out at [email protected].

TurboLens settings

The TurboLens tab gathers the toggles that govern the AI analysis surface. Unlike the per-module switches above, TurboLens is not a binary on/off — it is "ready" when both an AI provider is configured (under the AI tab) and the analysis data has synced at least once. The page also exposes:

  • Enabled regulations — tick which of the six built-in frameworks (EU AI Act, GDPR, NIS2, DORA, SOC 2, ISO 27001) participate in Compliance scans. Custom regulations defined under Metamodel → Regulations can also be enabled here.
  • Analysis polling cadence — how often the UI re-polls long-running TurboLens analyses for progress. Higher cadence = lower perceived latency, more API load.
  • Result cache TTL — how long completed analysis results are cached before the Run analysis button re-enables.

See TurboLens AI Intelligence for the full feature surface and Compliance for the scan workflow.