Location and Security Restrictions

In addition to punch locations, your OnTheClock account offers additional security features for accurate punching. You can view these settings in employee profiles when you click on the “Location and Security” tab. Currently, it is only possible for administrators and managers to edit these settings via browser.

Mobile Rules and GPS

Toggle this setting on to allow an employee to clock in via mobile device. From there, you can set a Mobile Rule:

  • Do Not Record GPS Coordinates: No location information will be recorded.
  • Record GPS Coordinates: A location will be recorded upon clocking in or out.
  • Record GPS Coordinates and Require GPS to Punch: A location will be recorded and the employee must share their location in order to clock in or out.
  • Record GPS Coordinates, Warn if Not at GPS Punch Location(s): The employee will be warned if they try to clock in outside of a designated location.
  • Record GPS Coordinates, Disable Punch if Not at GPS Location(s): The employee will not be able to clock in unless they are at a designated location.

IP Authorization

Toggle this setting on to tether clock-ins to a specific internet network. From there, you can set an enforcement rule:

  • Lock Out Employee: The employee will not be able to clock in unless they are on the designated network.
  • Warn Employee: The employee can clock in from other devices, but will receive a warning message if not using the designated network.
  • Off: The employee will be able to clock in and out regardless of what network they are using.

You can allow clock-ins from multiple IP addresses by changing the Enforcement Type. For example, you can use the Multi IP Range to allow employees to clock in and out from any IP address within a range.

Device Authorizations

Toggle this setting on to tether clock-ins to a specific device. The employee must log in from the device in order for it to be displayed as an option.

Fingerprint Sign On

Toggle this setting on if you’d like employees to be able to clock in and out using their fingerprints. Read more about setting up this feature.

Desktop or Laptop GPS

Toggle this setting on if you’d like to record an employee’s GPS coordinates when they clock in or out from a computer. They will not be restricted to a specific location.

Need more help?
Submit a ticket

Frequent Questions

A
Yes — clearing a cache, deleting cookies, or deleting the mobile app will deauthorize a device, requiring you to repeat the authorization process.
A
IP enforcement will only work if you have cable, a T1 line, or a Static DSL internet connection. Standard DSL constantly changes IP addresses. Therefore, it will not work for IP enforcement.
A
If your IP address is not static and you lose power or your internet connection, you may lose the IP address. If so, the IP address on file will need to be updated.
A
If your IP address is not static and you lose power or your internet connection, you may lose the IP address. If so, the IP address on file will need to be updated. “IP” is most commonly used and works best if employees are working from one main office. “Multi IP Ranges” is the next most popular, allowing you to enter in multiple IP addresses to create a list of authorized IP for multiple locations for clock in/out.

What's Next

Overtime Rules and Alerts

Learn how to set up overtime and receive messages when an employee enters into overtime.

SMS Alerts and Employee Messages

Learn how to use different features to message and alert employees.

Setting Up Paid Time Off

Learn how to set up paid time off to work with your organization’s policies.