Enhancing access management (Collector)

In a Real User Collector, a Security user can configure security features for services and account policies.

To configure the following security features for services, point to Administration > Security settings and click Services:

  • SNMP — When SNMP is enabled, you can configure the system the system as a managed network device that sends SNMP traps.
  • SSH access — When SSH access is enabled, an Administrator can switch SSH access to the system command-line interface on and off.
  • Incident and error alerts — When incident and error alerts are enabled, you can configure the system to send alerts via email to recipients when certain events occur.
  • Automatic device update checks — When automatic device update checks are enabled, the system automatically checks for software releases. These releases might consist of critical code updates or a firmware version with new features.
  • Traffic capture — When traffic capture enabled, an Administrator can switch traffic capture ON or OFF.
  • Require approval for header & content extraction — When approval is required for header and content extraction, specified newly added custom fields remain inactive until the Security user approves them. Custom fields can contain sensitive information derived from live web traffic, such as credit card numbers and other personal information.

  • A prelogin message — When the prelogin message is enabled, the system displays a custom message on the logon page.
     To customize this message, click Edit on the Action menu for Pre-login message. Maximum length of the message is 1024 characters, HTML is not allowed.
  • Automatic page reload — When automatic page reload is enabled, some pages automatically reload themselves after a predefined interval. This function is useful if you want to monitor data in near-real time without manually refreshing the page repeatedly.
    NoteThe automatic page-reload function might prevent inactive user sessions from timing out.
  • Change the timeout period for inactive sessions — Click Edit on the Action menu for Inactive session timeout period.
    • Minimum: 5 minutes
    • Maximum: 48 hours
 
 To configure the following security features for account policies, point to Administration > Security settings and click Account policies:
  • Password change upon first logon — When this feature is enabled, the system forces new users to change their password upon first logon.
  • Strict password policy — When strict passwords are enabled, users are forced to change simple passwords upon logon.
  • Password expiration period — When a password expiration period is enabled, a Security user can specify the number of days that a password is valid (the default value is 30). When this feature is disabled, passwords never expire. To configure this feature, click Edit on the Action menu, and enter a value (in days).
  • LDAP authentication and authorization — The Security user can enable or disable either or both LDAP functions.
  • Account lockout — When account lockout is enabled, an account locks after the specified number of unsuccessful attempts to log on and unlocks after a specified period. The default lockout value is 5, and the default unlock value is 24 hours. To configure the default period (30 days), click Edit on the Action menu.

  • Concurrent logons — When enabled, multiple simultaneous logons under the same account are permitted. When disabled, only the most recent logon works.
    NoteConcurrent login settings only apply to interactive sessions (where users are logged on to the web interface). You can still have multiple simultaneous API calls (such as data export and configuration APIs) using the same account credentials.
  • Automatic logins prevention — When enabled, browser software will not persist usernames and password (auto-completion is not permitted on the login page).

Related topics

Enhancing-access-management-Analyzer
Configuring-access-policies-Console

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*