Account Settings
Personal profile, security (password / 2FA / sessions), email preferences, API tokens, account deletion.
Account Settings
Your account settings live under Settings in the sidebar. The page is split into tabs by topic — profile, security, organization, billing, integrations, audit log. This guide covers what's on each tab.
Tabs at a glance
| Tab | What's there |
|---|---|
| Profile | Your name, email, password, avatar. |
| Security | Password change, 2FA, active sessions, revoke sessions. |
| Organization | Org name, slug, default project. Owner-only fields. |
| Team | Members, invitations, roles. Admin and Owner. |
| Billing | Plan, invoices, payment method, tax ID. Owner-only. |
| Integrations | Org-level integrations (separate from per-project ones). |
| Audit Log Pro+ | Who did what, when. Filter by user, action, date. |
| SSO Business+ | SAML SSO config and JIT settings. |
| Email Preferences | Digest emails, retention nudges, plan-limit warnings. |
Profile
- Name — appears in audit logs, the dashboard greeting, and email signatures.
- Email — used for sign-in (when not using SSO) and notifications. Changing it requires email verification.
- Avatar — auto-generated from your initials by default; upload a custom image.
- Timezone — used for run timestamps and the dashboard greeting. Set once and forget.
Security
Password
Change your password from this section. We require at least 8 characters with one number; longer is better. We hash with argon2id; we never see your plaintext password.
Two-factor authentication
The big toggle on this tab. See Two-Factor Authentication for the full guide.
Active sessions
List of devices currently signed in to your account, with last-used timestamp and approximate location (from IP geolocation). Revoke any session with one click — useful if you forgot to sign out on a borrowed laptop.
Sign out everywhere
Revokes all sessions including your current one. You'll be sent back to sign-in.
Organization
Owner and Admin fields:
- Organization name — visible on the sidebar selector and invitations.
- Slug — used in URLs. Editable but treat as semi-permanent.
- Default project — which project new members land on by default.
- Workspace logo — displayed on invitations and PR comments.
Members and Viewers see this tab in read-only mode.
Team
Pointer to the dedicated Team Management guide.
Billing
Plan, payment method, invoices, tax ID. See Usage & Billing.
Email preferences
Toggle which automated emails AegisRunner sends you:
- Weekly digest — summary of the week's runs and scans.
- Plan-limit warnings — when you hit 80% / 100% of monthly caps. Free plans can't disable these.
- Product updates — feature announcements. Off by default.
- Retention nudges — sent if you've been inactive for 7 days, then 30 days. Off by default for paid plans.
Run-completion notifications are configured separately under Notifications, scoped per project rather than account-wide.
API access
For programmatic access to AegisRunner, generate a CI trigger token on a project (Project → Integrations → CI/CD). It's project-scoped, used both for CI pipelines and for any custom tooling that calls our API.
See API Overview.
Deleting your account
At the bottom of the Profile tab. Deletion:
- Soft-deletes immediately (account becomes inaccessible).
- Hard-deletes after 30 days (everything goes).
- If you're the only Org Owner, you can't delete your account until you transfer ownership or delete the org first.
Reach out to support if you need help with account transfer.
Common questions
Why can't I see the Billing tab?
Billing is Org-Owner only. Admins and Members don't have access to subscription details.
How do I change the email I sign in with?
From Profile → Email. We send a verification email to the new address; the change applies once you click through.
How do I make someone else the Org Owner?
From Settings → Team, click the role dropdown next to the new owner and pick "Owner". The system asks you to confirm — you'll be downgraded to Admin in the same operation. There's always exactly one Org Owner.