Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This page will cover the various options for user management, as well as the authentication and security methods available for accessing ConnectSecure.

Table of Contents
minLevel1
maxLevel6
include
outlinefalse
indent
excludeSecurity Roles and User Management - Table of Contents
typelist
class
printablefalse

...

Add New User

Navigate to your Global Dashboard then, on the side toolbar, tap the User Management icon.

...

Enter your Login Name (the email address used for signup) and password.

New User 2-Factor Setup

Info

You only need to set up one of the following methods, but you can configure multiple options if you choose to do so.

Tap your choice and then the Next button for setup. Below are instructions for the two options.

Authenticator App Method

Select the Authenticator App option, then tap next.

...

You will be redirected to the authentication front-end Zitadel (authprod.myconnectsecure.com), where you will see your newly created user account details and options for password and Security, Identity Providers, Authorizations, Memberships, and Metadata.

...

This completes your setup, and you can now visit the ConnectSecure portal and log in at https://portal.myconnectsecure.com - you must provide the tenant name based on your company.

...

Device Dependent Method

Select the Device dependent option, then tap Next.

...

This completes your setup, and you can now visit the ConnectSecure portal and log in at https://portal.myconnectsecure.com - you must provide the tenant name based on your company.

...

Reset Password / MFA

This section will review how to use the password and MFA reset options and methods.

Ask Your Admin

If you have another user at your company with Admin permissions, you can ask them for assistance if you need to use the RESET MFA option.

Navigate to Global > User Management and use the three-dot action menu next to the user's name.

...

From the login link (https://authprod.myconnectsecure.com/ui/login/loginname ), tap the Reset Password link.

...

You will be prompted to enter your Windows Security, Auth App, or whichever Authentication Providersyou have configured in your tenant.

Upon successful login, you will land on the Zitadel authentication front end; navigate to your portal login screen here: https://portal.myconnectsecure.com to access the application.

...

Supported Password and Security

ConnectSecure has several methods available for authentication, which are found in the Zitadel portal; log in by visiting https://authprod.myconnectsecure.com, tap the Profile icon under the User icon, or from the sidebar using the Profile icon (must be at Global > Overview to access)

...

  1. Local password

  2. Passwordless Authentication

  3. Multifactor Authentication

...

Passwordless Authentication

Tap the Add method option to add a new Passwordless method.

...

Give the authenticator a name and tap Send Registration Link (1) or Generate QR Code (2).

...

Multifactor Authentication

Tap the Add Factor option to add a new multifactor method.

...

Info

NOTE: To use your phone with SMS, you must verify your phone number first. See below for help.

...

Assigning Security Roles to Users

Panel
panelIconId1f914
panelIcon:thinking:
panelIconText🤔
bgColor#DEEBFF

What are Security Roles?

Roles are used to assign application permissions and company-level access rights.

...

Info

Roles are assigned during new user creation, which it is found here:

https://cybercns.atlassian.net/wiki/spaces/CVB/pages/2111111353/User+Management+and+Security+Roles#Add-New-User

...

Default Roles and Security Matrix

ConnectSecure provides the following built-in roles with permissions listed in the table below.

Role

Overview

Assets

Vulnerabilities

Compliance

Active Directory

PII

Read

Write

ADMIN

Yes

Yes

Yes

Yes

Yes

Yes

Yes

Yes

ACTIVEDIRECTORYVIEWER

Yes

No

No

No

Yes

No

Yes

No

ACTIVEDIRECTORYWRITER

Yes

No

No

No

Yes

No

Yes

Yes

APPROVER

Yes

Yes

No

No

No

No

Yes

No

ASSETVIEWER

Yes

Yes

No

No

No

No

Yes

No

ASSETWRITER

Yes

Yes

No

No

No

No

Yes

Yes

COMPLIANCEVIEWER

Yes

No

No

Yes

No

No

Yes

No

COMPLIANCEWRITER

Yes

No

No

Yes

No

No

Yes

Yes

PIIVIEWER

Yes

No

No

No

No

Yes

Yes

No

PIIWRITER

Yes

No

No

No

No

Yes

Yes

Yes

VULNERABILITYVIEWER

Yes

No

Yes

No

No

No

Yes

No

VULNERABILITYWRITER

Yes

No

Yes

No

No

No

Yes

Yes

Info

In the previous version of ConnectSecure, we had a role called 'ITADMIN,' which is no longer found but we are working on getting this added to V4.

To grant ITADMIN access similarly in V4, you should assign the following roles:

  • ASSETWRITER

  • VULNERABILITYWRITER

  • COMPLIANCEWRITER

  • ACTIVEDIRECTORYWRITER

...

Company Level Allow/Deny Access Options

You can restrict a user to a specific company or set of companies based on the Security Role assigned.

Select any role, except for Admin, to see those options.

Allowed Companies

...

Denied Companies

Choose the Denied Companies radio option, then select from the Choose Company drop-down.

...

Need Support?

Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.

...