Hi,
I am looking at security on the CommServe and have a question.
I use CV only (non AD) accounts with MFA enabled.
If someone was to compromise my account they could create a MASTER account with NO MFA.
Is there a way to require a second MASTER account to approval an account getting created ?
Thanks
Hi
I understand that MFA is enabled on your local admin account. While there isn't a business logic workflow or approval from another master user on creation of a new master user. However you can enable the Business Logic Workflow, which will require approval from another master user to perform the tasks.
Also it is recommended to enable Two-Factor Authentication at the CommCell Level (Administrator).
Additionally, you can limit user logon attempts by referring to the Limiting User Logon Attempts, where you can set restrictions on the number of logon attempts allowed and define the account lockout duration.
Regards,
Dheeraj
Do you know if the Business Logic Workflow you mentioned above is available in the Store ? if so which one is it ?
Hi
Most of the business log workflows, such as Delete Client/Company/Job/Subclient Authorization, are predefined and can be found in the Workflow section.
Each workflow is designed for a specific operation. These workflows utilize a shared internal process, known as Get And Process Authorization, to seek approvals from the designated approvers according to the configurations
Please refer to the documentation on Multi-Person Authorization Operations to Minimize Insider Threat. Thank You!!
Regards,
Dheeraj Shetty
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
