EasyManua.ls Logo

Quantum SPARK 1500 - Two-Factor Authentication (2 FA)

Quantum SPARK 1500
461 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuring Administrator Access
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|156
8. Click Save.
An administrator can use the configured IP addresses to access the appliance
through the allowed interface sources.
To delete administrator access from a specific IP address
1. Select the IP Address you want to delete from the IP Address table.
2. Click Delete.
Important:
n
Configuring different access permissions for LAN and Internet is not supported
when your Internet Connection is configured in bridge mode (the option Allow
administration access from does not show Internet or LAN).
n
An automatic implied rule is defined to allow the access specified here. There is
no need to add an explicit rule in the Access Policy page to allow this access.
n
When you block the IP address or the interface group through which you are
currently connected, you are not disconnected immediately. The access policy
is applied immediately, but your current session remains active until you log out.
Two-Factor Authentication (2FA)
Two-Factor Authentication is an extra layer of security on the gateway. When Two-Factor
Authentication is enabled on the Administrator Access page, its use is mandatory for all
administrators configured on the appliance and is required for login. All administrators must
have both an email address and phone number configured.
When Two-Factor Authentication is enabled, if any administrators are missing information, a
warning message appears on the Device >System > Administrator Access page that all
administrators must first configure an email address and phone number. A list of
administrators who are missing information also appears.
Another message that may appear on this page is a recommendation to use a Network Time
Protocol (NTP) server to set the date and time on your appliance to avoid sync issues with the
Authenticator app.
Note - This feature is available starting from R81.10.10.
Note - In R81.10.10, Two-Factor Authentication is not supported when RADIUS or
TACACS is configured for administrator access.
Important - When Two-Factor Authentication is enabled, it is always required for login.

Table of Contents

Related product manuals