These settings are accessed via Admin > Employees - Login Settings.
Timeout users after inactive minutes: Time in minutes of inactivity that will sign out the current logged in User.
MFA Time Setting: Time setting that will require new multi-factor authentication after successfully authenticating from a device. The lowest you can set this to is one hour. This only requires a new MFA if the user signs out or closes the browser tab. If the user stays logged in, goes to another site, then returns to their own Syncro site, it will not require a new MFA.
Make sure to click Save after changing any of these settings.
Single Sign On: Optionally use your Identification Provider such as Entra ID, Okta, Goole Auth or more with the OpenID Connect authentication standard. More info in the SSO KB Article.