Configuring Admin Account

Add, modify and delete the following admin accounts.

Admin Account

The privileges for Super Admin with full privileges, and Policy Admin, General Admin, Group Admin, Security Admin, User-defined Admin and License Admin with limited privileges are as below. A User-defined Admin can use specified features only.

Note

Profiles that can be used by an user-defined administrator can be created from Admin Profile.

• Server Admin (Super): A top-level admin with full control.  Super admin and user-defined admin have access to Settings. However, only user-defined admin using an administrator profile that has access to the settings menu can access the settings menu.

• A super admin can add, modify and delete all admins.
• All other admins can only change their own account information.
• A super admin can add, modify and delete multiple security admins, personal information handling admins and admins.
• A super admin cannot add policy admin, general admin, group admin, security admin, user-defined admin and license admin.
• A super admin can add rules.

• Policy Admin: A policy admin has access to Management, but not Dashboard and Report.
• General Admin: A general admin has access to Dashboard, Report and Log, where the admin can check the current status, logs and notifications, and view daily, weekly and monthly reports. There is no session timeout for a general admin, so the admin will not be automatically logged out.

• License Admin: A license admin has privileges to features associated with the selected licensed products only.

• Group Admin: A group admin has limited privileges to his or her department, with access to Management, Response and Report. A group admin can create a report on his or her department only.
• Security Admin: A security admin is in charge of security, therefore can check detected malware and suspicious behaviors.
• User-defined Admin: A user-defined admin has access to specified features only.

Admin Account List

To check admin account information:

1. On the top of the web page, click Settings.
2. From the left menu, select Admin > Accounts.
3. Check the list of registered admins.

• Add: Add an admin account.
• Delete: Delete an admin account.
• Modify: Modify an admin account.
• Import: Import an admin account - group admin or security admin. Click Browse... to upload the admin account file.
• Type: Select the type of admin account - super admin, policy admin, general admin, group admin, license admin, security admin and user-defined admin.
• Profile Name: The profile name specified in Admin Profile, where privileges are specified for each user-defined admin profile.
• ID: The admin's ID (5 to 10 characters).
• Admin Name: The admin's name (1 to 128 characters).
• Email Address: The admin's email address.
• Description: A description of the admin.

Search

Search for admin accounts by type (server admin, policy admin, general admin, group admin, license admin, security admin and user-defined admin), or ID, Admin Name and Email Address. Enter the search keywords), and click Search.

Add Admin Account

To add an admin account:

1. On the top of the web page, click Settings.
2. From the left menu, select Admin > Accounts.
3. Click Add.
4. In <Add Admin Account>, fill in all the required fields.

• Type: Select an admin type.
• Server (Super) Admin: A top-level admin with full control. Only the super admin can change the settings menu.
• Receive exceptions email requests: Select whether to receive an email when an agents requests for exceptions approval.
•  User-defined Admin: A user-defined admin can only use specified features only. When creating a user-defined admin, a profile must be created from Admin Profile first.
• Profile: When creating a user-defined admin, a profile must be selected. Click [View details] to check the privileges.
• License Admin: Select the licensed product to manage. A license admin has privileges to features associated with the selected licensed product only. The admin has no privileges to features associated with other licensed product.
• Group Admin: A group admin has limited privileges to his or her department. Click Settings to select the group to manage.
• General Admin: A general admin has read privileges only with access to Dashboard, Report and Log, where the admin can check the current status, logs and notifications, and view daily, weekly and monthly reports. There is no session timeout for a general admin, so the admin will not be automatically logged out.
• Profile: Select a profile. Click View Details to check the set privileges.
• ID: Enter an ID between 5 and 10 characters.
• Password: Enter a password.

Note

<Password Conditions>
- Must be 9 to 30 characters long and contain letters, numbers and special characters
- No more than 3 repeated characters
- No more than 4 consecutive numbers
- No more than 3 key sequences
- No last 3 previously used passwords

• Confirm Password: Confirm the password.
• Name: Enter a name between 1 and 128 characters.
• Email: Enter the admin's email address (e.g.: 123@ahnlab.com).
• Phone (Optional): Enter the admin's phone number. (Numbers and hyphen only)
• Login Available Time: Specify the time and day to allow the admin to login.
• Allowed IP Address 1: The admin can login from two IP addresses. Enter the IP address from which the admin will login (IPv4 or IPv6). Notifications will be sent from allowed IP addresses.
• Allowed IP Address 2: Enter the IP address from which the admin will login.
• Login Timeout: Enter the timeout period (1 to 999 mins) for a login session. The default is 20 mins. The admin will be automatically logged out after the specified time of inactivity. There is no session timeout for a general admin.

• Login Suspension Time: Enter the time to suspend login (5 to 10 mins) after three failed logins. The default is 10 mins.
• Password Valid Time: Enter the time the password is valid for (30-180 days). The default is 180 days.
• OTP authentication when logging in: Click Enable to enable OTP authentication at login. To use this feature, there must be an email address to receive the OTP. To specify the email address, go to Settings > System > Email Server. Click Send OTP to send an OTP to the specified email address.
• OTP: Enter the OTP you received via email and click Confirm.
• Language: Select a language. You can select between Korea, English, Simplified Chinese and Japanese.

• Description:  Enter a description of the admin.

5. Click OK.

Note

To specify the email address to receive the OTP, go to Settings > System > Mail Server.

Modify Admin Account

To modify an admin account:

1. On the top of the web page, click Settings.
2. From the left menu, select Admin > Accounts.
3. Click the admin account to modify.
4. In <Modify Admin Account>, modify the information.
5. Click OK.

Delete Admin Account

To delete an admin account:

1. On the top of the web page, click Settings.
2. From the left menu, select Admin > Accounts.
3. Click the admin account to delete.
4. Click the Delete icon on the left of the admin account or click Delete at the top.