Difference between revisions of "M4 Login with approved IP's"

From Kolmisoft Wiki
Jump to navigationJump to search
Line 1: Line 1:
=Description=
=Description=
'''Admin login with approved IP's''' is a security measure which allows to approve only selected IP's that try to login with Admin Account.
'''Admin login with approved IP's''' is a security measure that allows approving only selected IPs that try to log in with Admin Account.
<br>
<br>


Line 6: Line 6:
'''Admin login with approved IP's''' can only be managed by the System Admin.<br>
'''Admin login with approved IP's''' can only be managed by the System Admin.<br>


The functionality is turned on by default and can be turned off using the setting in '''MAINTENANCE > Settings > Security > Admin login with approved IP only:''' (we do not recommend to turn it off)
The functionality is turned on by default and can be turned off using the setting in '''MAINTENANCE > Settings > Security > Admin login with approved IP only:''' (we do not recommend turning it off)
<br><br>
<br><br>
[[File:M2_unauthorized_ip_setting.png]]
[[File:M2_unauthorized_ip_setting.png]]
<br><br>
<br><br>
With the Setting enabled, all new login attempts with Admin account will fail with following message:
With the setting enabled, all new login attempts with an Admin account will fail with the following message:
<br><br>
<br><br>
[[File:M2_unauthorized_ip.png]]
[[File:M2_unauthorized_ip.png]]
<br><br>
<br><br>
And will be reported to System Admin via Email. Then Admin can decide, whether to Accept such IP, or completely block it from the System by pressing on the appropriate link:
And will be reported to System Admin via Email. Then Admin can decide, whether to Accept such IP or completely block it from the System by pressing on the appropriate link:
<br><br>
<br><br>
[[File:M2_unauthorized_ip_email.png]]
[[File:M2_unauthorized_ip_email.png]]
Line 20: Line 20:
<br><br>
<br><br>
= Notes =
= Notes =
This is one-time thing for each new IP and only for admin account.
This is a one-time thing for each new IP and only for the admin account.


When IP is confirmed by administrator - any future attempts from this ip will be authorized.
When IP is confirmed by the administrator - any future attempts from this IP will be authorized.


Until Admin decides what to do with IP, this IP will not be able to login.
Until Admin decides what to do with IP, this IP will not be able to log in.


IP can be unblocked in the page: [[M2 Blocked IPs]]
IP can be unblocked on the page: [[M4 Blocked IPs]]

Revision as of 11:22, 29 November 2022

Description

Admin login with approved IP's is a security measure that allows approving only selected IPs that try to log in with Admin Account.

Usage

Admin login with approved IP's can only be managed by the System Admin.

The functionality is turned on by default and can be turned off using the setting in MAINTENANCE > Settings > Security > Admin login with approved IP only: (we do not recommend turning it off)

M2 unauthorized ip setting.png

With the setting enabled, all new login attempts with an Admin account will fail with the following message:

M2 unauthorized ip.png

And will be reported to System Admin via Email. Then Admin can decide, whether to Accept such IP or completely block it from the System by pressing on the appropriate link:

M2 unauthorized ip email.png



Notes

This is a one-time thing for each new IP and only for the admin account.

When IP is confirmed by the administrator - any future attempts from this IP will be authorized.

Until Admin decides what to do with IP, this IP will not be able to log in.

IP can be unblocked on the page: M4 Blocked IPs