Administrator Account

Sub-administrator accounts can be created for work distribution of the SuperAdmin. The created administrator accounts can be used with controlled permissions according to their job roles.

Permission ID Permission Name Description
auditor Audit Administrator Read access to all Web Console menus
ipAppManager IP Application Page Administrator Cannot access Web Console, can access IP application page as administrator
ipManager Administrator for IP usage management Role that performs approval processing for IP applications (access only Web Console IP application menu)
logAuditor Audit Log Administrator Role that can only access the Web Console Audit menu
mediaManager Device Usage Application Administrator Role that can only access the Web Console Device Usage Application menu
nodeAuditor Node Audit Administrator Role that can only access Web Console Node Management and Audit menus
superAdmin Super Administrator Role with full Web Console permissions
userManager User Account Administrator Role that can only access the Web Console Manage Users menu

Note

The superadmin management role can only be assigned to one account among all administrator accounts.

Add Administrator

  1. Go to Management > User in the top panel.
  2. Click Select Action > Register User.

Basic Settings

  1. Enter the User ID in User ID.
  2. Enter the name in User Name.
  3. Select the administrator role in Management Role.
  4. If a description for the account is needed, enter the description in Description.
  5. For User Purpose, select None.
  6. For User Status, select Normal. (To temporarily disable the account, select Disabled.)
  7. For Account Expiration, click the checkbox and select the date and time.
  8. For Tags, you can click Add to choose to add tags to this account.

Password Settings

  1. Enter the password in Password.
  2. Re-enter the password in Confirm Password.

Authentication Restriction Settings

  1. Go to Management > User in the top panel.
  2. Click User ID.
  3. For IP Authentication Limit, you can specify the number of authentication IPs that can be used with this account. (Max 256 settings, 0 for no limit)
  4. For MAC Authentication Limit, you can specify the number of MAC addresses that can be used with this account. (Max 256 settings, 0 for no limit)
  5. For Device Authentication Limit, you can specify the number of devices that can be used with this account. (Max 256 settings, 0 for no limit)
  6. For Allowed Authentication IP, you can specify IP addresses separated by , (comma) . (No limit if left blank)
  7. For Allowed Authentication MAC, you can specify MAC addresses separated by , (comma) . (No limit if left blank)
  8. For Authentication Restriction Exception Node Group, you can assign groups to which authentication restrictions will not apply. Click Assign to specify exception node groups.

Login Settings

  1. Add Administrator WEB UI access IP / MAC. (No limit if left blank)
  2. Select the 2-step authentication method to use. You can choose SMS authentication, OTP authentication, or None.
  3. Select the time zone. (Asia / Seoul (GMT +09:00)

Alarm Information Settings

  1. In Alarm Reception Settings, select whether to receive alarms for User Registration, IP Application, Device Application. You can receive new event occurrence alarms for selected items.

  2. Notification Information sets the information to use when delivering event occurrence alarms; if manually entered, set the following additional information:

    • SMS Reception Number sets the mobile phone number to receive alarms.
    • Sender Number enters the sender number to display on the SMS.
    • Email enters the email address to receive alarms.

Management Restriction Settings

Management restriction settings are configured when limiting the permissions of administrator accounts. - You can limit the management scope and settings of administrator accounts. - When configuring management scope restrictions for multiple administrator accounts, settings can be made from the Management > User > All Administrators list via the screen accessed through the Management Restriction Settings command in Select Action.

  1. Node Management Scope Restriction : Limit management scope by specifying node group, network sensor, node type
  2. Node Management Command Restriction : Limit the types of operations that can be performed on the Node Management screen
  3. Node Management View Restriction : Limit the types of views selectable on the Node Management screen
  4. Node Detail View Restriction : Limit tabs in node's detailed information
  5. User Management Scope Restriction : Limit user management scope by specifying departments including users
  6. User Management Command Restriction : Limit the types of operations that can be performed on the User Management screen
  7. Audit Log Search Scope Restriction : Limit available search filters in the Audit menu
  8. File Export Restriction : Limit file (Excel) export function
  9. Dashboard Widget Restriction : Limit dashboard widget function

Trusted Connection Settings

You can configure information to allow only trusted Clients to call Web services (Genian API, REST API) to the Policy Server from external sources.

  1. IP Pattern : Set trusted Client IP patterns that can call web services.
  2. URL Pattern : Set trusted URL patterns that can call web services.

Additional Information Settings

  1. Enter the organization name in Organization Name.
  2. For Department Name, click search to select a department. (Department creation method: User > Department > Actions > Create)
  3. For Job Title, select a job title from the list. (Job Title creation method: User > Job Title Management > Actions > Create)
  4. For Phone Number, enter the phone number. (e.g. 123-456-7890, or 1234567890)
  5. For Mobile Phone, enter the mobile phone number. (e.g. 123-456-7890, or 1234567890)
  6. For Email, enter the email address.

Note

To the email address in the Email item, you can receive ID/Password Recovery authentication emails, IP Usage Application/User Account/Device Application/User Change Approval Application emails, and emails for node-targeted commands.

Remove Administrator

  1. Go to Management > User in the top panel.
  2. Identify the user to be deleted and select the checkbox.`
  3. In Select Action, select Delete User.
  4. Click Confirm.