Network Security Management Administration Guide

Editing CSC Users

Most major changes to users, including deleting users, need to be performed in MSW. However, some features can be edited locally.

To update user information

  1. Navigate to Manager View | CSC Users > Users.
  2. Click the Edit option in the ACTION column of the user you want to edit.

  3. In the General tab, enter the following and click Save:
    • Secondary Email—Secondary email address of the user.
    • Comment—Any valid comment.
    • Notifications—Enable or disable notifications.
    • Timeout—The duration after which the user is logged out.
  4. For Authentication Server, choose Local Authentication or CAC (Common Access Card) from the list.
  5. Click on the Authentication tab.

    NSM SaaS Interface:

    NSM On-Prem Interface:

  6. In the Authentication tab, the SETTINGS section is available only for NSM On-Prem and not for NSM SaaS.

    Under SETTINGS (only for On-Prem users):

    1. You can Enable Lockout, which will lockout a user for some time after repeated failed login attempts to protect user credentials.
    2. Select the Lockout Type from the dropdown options: IP Address, User.

      IP Address - User is locked out only from the Source IP Address used for failed logins.

      User - User is locked out from all IP Addresses.

    3. You can enable the Two-Factor Authentication.

    4. Select the Authentication Server from the dropdown.

    5. You must generate and download the Recovery Code. This Recovery Code along with OTP sent to Email Address configured in SMPT settings is used to reset the NSM Password in case if login password is forgotten.

      This feature is available only for Super Admin users.

      SMTP Server under System | Settings > Administrator > Notifications has to be configured to get OTP while resetting.

      This Recovery code can be used only one time. It has to be regenerated once used.

    Under WHITELIST LOGIN IP ADDRESS:

    1. You can Whitelist login IP addresses. The IP address that are not added in the Whitelist Login IP Addresses will be blocked.

      To Whitelist login IP addresses

      1. Click Add.

      2. Select the Network Type from the dropdown options: Host, Range or Network.
        Host - When selected Host, input the IP address of the whitelist device.
        Range - When selected Range, enter starting and ending IP range
        Network - When selected Network, enter Network name and Netmask. The user's IP address is automatically checked whether the user is logging in from an allowed IP whenever a login is attempted.

      3. Enter the IP address to be whitelisted.

      4. Click Save.

    2. Click Save.

  7. Click the Access tab to see the various permissions and devices access.

  8. In the Access tab,

    1. Click on the Role to see the permissions granted to this user. Yo can click the + icon to expand the permissions list to see the detail behind it. Click again to collapse permissions.

    2. Click the Edit icon in TENANTS & DEVICES to associate tenants and devices together and click Apply.

    3. Click Save

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

  • Hidden
  • Hidden

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.
  • Hidden
  • Hidden