Motadata Docs

Security

Security deals with securing the application from inside and outside threats. This section enables you to view the different audit logs, user sessions as well as configure the various security policies. You can also blacklist certain IP Addresses from accessing the ServiceOps Portal.

To view the Security page, navigate to Admin > Organization > Security.

It consists of the following tabs:

  • Configuration Audit
  • Tenant Audit
  • Operation Audit
  • Password Policy
  • User Security
  • User Sessions
  • IP Address Restriction

Configuration Audit

This tab displays the configuration summary along with the audit logs about all the technical changes. You can also download the summary in PDF or Excel format if required.

Configuration Audit
Configuration Audit

From this page, you can perform the below tasks:

  1. Filter: You can select the date range, user, event, and IP Address based on which the log data is to be filtered.
  2. Refresh: You can refresh the log list to sync and get the latest activities.
  3. Download: You can download the summary in PDF or Excel format.

Tenant Audit

This tab displays the summary of the changes made in the tenant configuration.

Note: This tab is available only if Tenant Management feature is enabled in the license.
Tenant Audit
Tenant Audit

From this page, you can perform the below tasks:

  1. Filter: You can select the date range based on which the log data is to be filtered.
  2. Refresh: You can refresh the log list to sync and get the latest activities performed in the tenant section.

Operation Audit

This section displays the changes made in the application along with the details. You can view the logs based on the selected module.

Operation Audit
Operation Audit

Here, you can filter the logs based on the selected module. Also, you can set the number of records to be viewed per page.

Password Policy

This tab enables you to add validations for the password to increase its security. The Password Policy is a preventive measure to keep the threats off the bay. You can either make it simple or complicated as per the organization’s needs.

Note: You can neither copy anything from the password field nor paste anything into it.
Password Policy
Password Policy

You can configure the below parameters for the password:

Parameter Description
Password Min Length Enter the required minimum length of the password.
Have Special Characters Whether the password should contain special characters or not.
Have Alphabet and a Number Whether the password should contain an alphabet and a number.
Have Mixed Case Whether the password should have a mixture of both the uppercase and lowercase characters.
Password Expiry Select the option when you want the password to expire. The options are:

  • Never
  • Every 15 Days
  • Every 30 Days
  • Every 60 Days
  • Every 90 Days

Based on the selected option, the password will expire and you are required to reset it.
Do not allow users to use previous passwords Enable if you do not want the user to use previous passwords again.
Previous Passwords If the above option is enabled, enter the number of previous passwords which cannot be used. For example, if 2 is entered, the user will not be allowed to set the last 2 previously used passwords.

Once done, click Update to apply the policy.

User Security

This tab enables you to enhance the security of the user accounts. You can set the two-factor authentication, lock user account, allow concurrent login, allow to use Google account to login, and use captcha. Also, you can set the session timeout parameters.

User Security
User Security

The parameters are:

Parameter Description
Enable two-factor authentication Enable if you want to use the two-factor authentication method to login. Using this method, along with the credentials the user needs to enter the OTP also to login to the portal. To receive the OTP, you need to configure an outgoing mailbox.
Lock user account after failed login attempts Enable if you want to lock the user account once the limit of the failed login attempts exceeds. If enabled, specify the number in the Failed Login Attempts field.
Session Timeout Enable if you want to configure when the session should timeout. If enabled, provide the Session Idle Time and Session Timeout in hours or minutes.
Allow Concurrent User Log In Enable if you want to allow the users to have concurrent sessions.
Allow user to login with Google account Enable if you want to allow the user to use the Google Account to login to the portal. If enabled, enter the unique Google Web Client ID using which the user can login.
Enable Captcha Enable if you want to use the Captcha on the login screen. Once enabled, provide the following inputs:

  • Captcha Type: You can select either Online or Offline type of captcha to be used.
  • Enable Captcha for Guest User Request Creation Form: Enable if you want the Guest user to enter the Captcha while creating a request.

Once all the settings are configured, click Update.

User Sessions

This tab displays the login sessions of the users along with their details. The details include Name, Email, Logon Name, Login Date, and Login IP Address. This helps to keep a track of the users who are logged in to the portal.
Also, you can terminate any session if required using the red Terminate Session icon from the Actions column.

User Sessions
User Sessions

IP Address Restriction

This tab displays a list of IP Addresses configured to allow access to the ServiceOps Portal. If the IP Address of the user is within the configured range, the user will be allowed to sign-in to the portal. If it is outside the configured range, the user will be restricted from signing-in with a message, “You are not allowed to login from current location”.

IP Address Restriction
IP Address Restriction
  • All the activities performed here will be logged and displayed in the Configuration Audit section. Also, if the user fails to sign-in due to the IP Address Restriction, the details will be displayed in the Configuration Audit.
  • You can also create a new IP Address Restriction table configuring the range as well as other details as below:
Create IP Address Restriction button
Create IP Address Restriction button
Create IP Address Restriction Page
Create IP Address Restriction Page

Enter the following details:

  • Name: Provide the name of the IP Address Restriction list.
  • IP Address Restriction Type: Select the type of IP Address to be restricted. Options available: IPV4 and IPV6.
  • IP Range Type: Select the IP Range Type as:
    • Specific Range: Provide the IP Address Range by mentioning the IP Range Start and IP Range End.
    • Comma Separated IPs: Provide the list of IP Addresses separated by comma.
  • Restricted User Type: Select the type of users to be restricted. Available Options are: All Users, Requester, and Technician.
  • Description: Provide a brief description about the list.

Click Save and the IP Address Restriction list will be visible.

Enable/Delete/Edit
Enable/Delete/Edit
  • Enable/Disable: Enable or Disable a list for the Restriction. If enabled the list will be applied to the users and accordingly allowed to sign-in.
  • Edit/Delete: You can edit or delete the list from the Actions column.

On this Page

×