Logon Settings


To strengthen logon security, EventLog Analyzer supports two-factor authentication (TFA).

Setting up Two-Factor Authentication

Backup Verification Codes

Managing Enrolled Users

Managing Account Two-factor Authentication

 

If TFA is enabled, EventLog Analyzer will require its users to authenticate using one of the following authentication mechanisms in addition to Active Directory or RADIUS authentication.

Note: As a preventive measure against lockout, it has been made possible for an administrator to skip two-factor authentication during logon.

 

Setting up Two-factor Authentication

To enable two-factor configuration,

 

 

Note: If multiple authentication options are enabled, the user will be asked to choose one at the time of logging in.

Email Verification

When email verification is enabled, EventLog Analyzer sends a verification code to the configured email address. That verification code would need to be entered to successfully login.

To configure email verification as the second authentication mechanism,

 

SMS Verification

When SMS verification is enabled, EventLog Analyzer sends a verification code via SMS to the configured mobile number. That verification code would need to be entered to successfully login.

To configure SMS verification as the second authentication mechanism,

 

Google Authenticator

When verification via Google Authenticator is enabled, a six-digit security code will be generated in the Google Authenticator application in the configured mobile. This code would need to be entered to successfully login.

To configure Google Authenticator as the second authentication mechanism,

Note: Ensure that the client time and device (mobile) time are syncronized.

 

RSA SecurID

When verification via RSA SecurID is enabled, the security codes generated by the RSA SecurID mobile app, hardware tokens, or tokens received via mail or SMS would need to be entered to successfully log in.

To configure RSA SecurID as the second authentication mechanism,

 

Duo Security

When verification via Duo Security is enabled, a six-digit security code will be generated in the Duo Security application in the configured mobile. This code would need to be entered to successfully login.

Note: Ensure that the server time and internet time are syncronized.

To configure Duo Security as the second authentication mechanism,

 

Backup Verification Codes

As a backup mechanism against user lockout because of two-factor authentication failure, EventLog Analyzer has backup verification codes. Each user can generate a set of backup verification codes, which will have five, and use one code each time they are unable to login by authenticating using the configured mechanism.

To allow users to login using backup verification codes, enable the Backup Verification Code check box.

To generate backup verification codes, go to Two-factor Authentication in My Account.

 

Managing Enrolled Users

As an admin, you can view the authentication method users have enrolled for and also remove users’ enrollment for two-factor authentication. To manage enrolled users,

 

Managing Account Two-factor Authentication

To manage the two-factor authentication settings of the logged in account, check Manage Account TFA.

Get download link