Choose the Device or Browser to Punch From on the Location & Security Tab

Set up Location & Security Restrictions for Employees

Log in as the administrator or manager → Click on “Employees” at the top of the screen → Choose an employee to set up → Click on  “Location & Security”.

Setting up Employee Mobile Rules on desktop

Log in as the administrator or manager → toggle “Enable Mobile Punch” to green → to disable mobile punch turn to red → Choose a “Mobile Rule” → Click the “Save Settings”.

 

Setup mobile rules on the mobile app

Login as the administrator or manager → tap initials in the upper left corner → tap settings → tap employees → select an employee name → scroll to "mobile rules and GPS" → toggle enable mobile punch to green → tap the next field for a drop down menu to select your desired rule → scroll down and click save.

Set Up IP Authorizations on Devices

Log in as the administrator or manager → Toggle “Enable IP Authorization” to green → Choose “Enforcement Level” → Choose “Enforcement Type” → Click Save settings button.

Guide to using the Multi IP Range

 

Add the same IP address in the From IP: and the To IP: boxes → Click on the Add button → it will display in the multi IP’s box → Repeat entering the IP and adding as many times as needed.

 

Adding IP restriction for multiple locations

Add the first IP address of the range in the From IP: boxes → Put the ending IP address of the range in the To IP: boxes → Click on the Add button and then you will see it in the box below → Add as many as you need.

Authorizing a Specific Device or Browser

Log in as the administrator or manager → click “Enable Device & Browser Authorization” so that it’s green, on → The employee must first attempt login from the device or browser so that it appears in the list → Once the device or browser appears, click green to allow punching or red to turn it off → Click “Save Settings”

Enable Fingerprint Sign On

Log in as the administrator or manager → click “Enable Fingerprint Sign On” to “on” →Follow fingerprint instructions here. → Click “Save Settings”.

Desktop or Laptop GPS

Log in as the administrator or manager → click “Record Punch Location” under the “Desktop GPS Rules” to turn green, on –Click “Save Settings” button.

Need more help?
Submit a ticket

Frequent Questions

A
“Do Not Record GPS Coordinates”: Allows mobile use with no restrictions and no tracking of where employee punches. “Record GPS Coordinates”: This works if the employee shares their GPS location. They will get a notice asking to do this. “Record GPS & Require GPS to Punch”: This requires GPS signal/sharing to be on to punch. “Record GPS, warn if Not at GPS Punch Location”: Allow employees to punch where they are, but a warning is sent to the manager if they are outside of the designated area. “Record GPS, Disable Punch if Not at GPS Punch Location(s) Then”: If an employee is outside of the designated area, they will not be able to punch.
A
App Users – If the employee deletes or re-installs the app, the device will become unauthorized; repeat this setup process to authorize. Browser Users – If the employee deletes the browser cookies, the browser will become unauthorized; repeat this setup process to authorize.
A
When using the IP Enforcement option, you must use a valid Internet email address for the manager, not an internal email address or a fake one. If you do not use a valid internet email address, your managers will never receive emails that are sent to notify them of the violation.
A
IP enforcement will only work if you have cable, a T1 line, or a Static DSL internet connection. Standard DSL constantly changes IP addresses. Therefore, it will not work for IP enforcement.
A
If your IP address is not static and you lose power or internet connection, you may lose the IP address, resulting in needing to update the IP address on file.
A
Go back to the employee profile under IP authorizations and confirm you have entered a valid IP address in the IP boxes. 0.0.0.0 is not valid and also double-check to make sure you didn’t mistype one of the numbers. To confirm, check out your IP address listed below the IP boxes or google. What is my public IP.
A
When using the IP Enforcement option, you must use a valid Internet email address for the manager, not an internal email address or a fake one. If you do not use a valid internet email address, your managers will never receive emails that are sent to notify them of the violation.
A
Ontheclock.com can only see the Public IP address that your Internet Service Provider (ISP) gives your facility. It cannot see any of your private IP addresses within your facility; these private IP addresses cannot be seen on the internet, so they are personal IP addresses.
A
“IP” is most commonly used and works best if employees are working from one main office. “Multi IP Ranges” is the next most popular, allowing you to enter in multiple IP addresses to create a list of authorized IP for multiple locations for clock in/out.
A
“Lockout” is most commonly used and means an employee cannot clock in or out if they are not at your listed authorized IP address. “Warn Employee” will alert a manager that the employee has logged in outside the listed IP but will still allow the clock in and out to be performed.

What's Next

Set up overtime rules and alerts

Learn how to apply an overtime rule to the employee profile.

SMS alerts and employee messages

Set up SMS notifications for employee clock in/out. Display personal messages.

Set up Paid Time Off

Learn how to set up employee PTO policies on their profile.