Security settings in Explore & Present

Security settings in Explore & Present#

This guide explains how to configure password expiration and two-factor authentication settings in Explore & Present.

Note

This feature is only available to users with WA (Workspace Admin) permissions in your organization’s root workspace. Other users will not be able to see this feature in the Administration menu in Explore & Present. For more information, see Roles and permissions in Explore & Present.

Configuring password expiration settings#

Use the password expiration settings to require all users in the current workspace to reset their passwords after a specific time period. Users will receive an email 7 days before the end of the time period to remind them to reset their password. If a user does not reset their password by the end of the time period, their account will be locked and you will need to contact Adverity to unlock their account.

To set a password expiration period, follow these steps:

  1. Go to the Present page.

  2. In the top left corner, click image1 Select workspace, then image2 Administration.

  3. In the Security section of the administration menu, click Password expiration policy.

  4. Perform any of the following actions:

    • To set a password expiration period, click Enable password expiration and then, in Password expiration in months, select the number of months that users have before they must reset their password.

    • To change the password expiration period, in Password expiration in months, select the new duration in months, and then click Update password expiration.

    • To disable the password expiration period (i.e. users never have to reset their passwords), click Disable password expiration.

As a result, you have set, changed or disabled the password expiration period. The changes you make are applied immediately in this workspace.

Configuring two-factor authentication settings#

Introduction#

Two-factor authentication helps you to keep your Adverity account secure. You can set up two-factor authentication in Explore & Present using an authenticator application of your choice.

Prerequisites#

Before following the steps in this guide, you need to install an authenticator application on your smartphone or computer. The list below provides some example authenticator applications.

On an Android device

Google Authenticator

On an Apple device

Apple’s two-factor authentication function

On a desktop computer

Authenticator or GAuth Authenticator

Setting up two-factor authentication#

Adverity asks you to set up two-factor authentication when you first log in to Explore & Present. To do this, follow these steps:

  1. Log in to Explore & Present with your email address and password.

  2. Scan the QR code using your chosen authenticator application.

  3. Enter the six-digit code provided by your authenticator application.

  4. Click Verify.

Now that two-factor authentication is active for your account, whenever you log in to Explore & Present, follow these steps:

  1. Log in to Explore & Present with your email address and password.

  2. Generate a six-digit code in your chosen authenticator application.

  3. Enter this six-digit code in Explore & Present.

  4. Click Validate.

Resetting two-factor authentication for an Explore & Present user#

Users with Workspace Admin permissions can reset a user’s two-factor authentication. To do so, follow these steps:

  1. Go to the Present page.

  2. In the top left corner, click image3 Select workspace, then image4 Administration.

  3. In the Users and roles section of the administration menu, click Users.

  4. In the table, click Show in the row for the user whose two-factor authentication you want to reset.

  5. In the User details page, click image5 Reset two-factor auth setup.

  6. In the confirmation dialog, click OK.

As a result, you have reset two-factor authentication for the selected user in Explore & Present. The next time this user logs in, Adverity will ask them to set up two-factor authentication again.

Enabling two-factor authentication for all Explore & Present users#

If you have access to the root workspace in Explore & Present, and you have Workspace Admin permissions, you can require all users to use two-factor authentication when logging in to Explore & Present.

To enable two-factor authentication for all users, follow these steps:

  1. Go to the Present page.

  2. In the top left corner, click image6 Select workspace, then image7 Administration.

  3. In the Security section of the administration menu, click Two-factor authentication.

  4. Select the Enable two-factor authentication for users checkbox.

  5. Click image8 Update.

As a result, the next time any user logs in to this Explore & Present instance, they will be required to set up and use two-factor authentication.

Excluding some users from two-factor authentication#

If you want to enable two-factor authentication for all Explore & Present users as described above, but need to allow certain users to log in without using two-factor authentication, you can exclude their IP address from needing two-factor authentication.

To exclude an IP address from needing two-factor authentication, follow these steps:

  1. Go to the Present page.

  2. In the top left corner, click image9 Select workspace, then image10 Administration.

  3. In the Security section of the administration menu, click Two-factor authentication.

  4. In the Exclude IP-address ranges from two-factor authentication field, enter the IP address of the user you want to exclude. To exclude multiple IP addresses, enter each IP address on a new line.

    Note

    You can enter both IPv4 and IPv6 addresses. Configure IP address ranges using CIDR notation, for example 0:0::/32.

  5. Click image11 Update.

As a result, users who use the IP addresses you entered will not be required to use two-factor authentication when logging in to Explore & Present.

Contents