This page will cover the various options for user management and the authentication and security methods available for accessing ConnectSecure.
...
Table of Contents | ||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
...
Add New User
...
Navigate to Global > Settings > Users and tap the Add button.
...
Complete the required fields, which include the First Name, Last Name, Email, Phone Number, and Role.
Configure Company Level Access
When selecting a ROLE, you can configure the Company Level Access for that Role.
...
Enter your Login Name (the email address used for signup) and password.
New User 2-Factor Setup
Info |
---|
You only need to set up one of the following methods, but you can configure multiple options if you choose to do so. |
Tap your choice and then the Next button for setup. Below are instructions for the two options.
Authenticator App Method
Select the Authenticator App option, then tap next.
...
This completes your setup. You can now visit the ConnectSecure portal and log in at https://portal.myconnectsecure.com. You must provide the tenant name based on your company.
...
Device Dependent Method
Select the Device dependent option, then tap Next.
...
Note |
---|
Please Note: SMS Gateway is not yet configured so the SMS options will not work at the moment. |
...
Reset Password / MFA
This section will review how to use the password and MFA reset options and methods.
Ask Your Admin
If you have another user at your company with Admin permissions, you can ask them for assistance if you need to use the RESET MFA option.
Navigate to Global > User Management and use the three-dot action menu next to the user's name.
...
Self-Service Using Reset Password Link
From the login link (https://authprod.myconnectsecure.com/ui/login/loginname ), tap the Reset Password link.
...
Upon successful login, you will land on the Zitadel authentication front end; navigate to your portal login screen here: https://portal.myconnectsecure.com to access the application.
...
Supported Password and Security
ConnectSecure has several methods available for authentication, which are found in the Zitadel portal; log in by visiting https://authprod.myconnectsecure.com, tap the Profile icon under the User icon, or from the sidebar using the Profile icon (must be at Global > Overview to access)
...
Local password
Passwordless Authentication
Multifactor Authentication
...
Passwordless Authentication
Tap the Add method option to add a new Passwordless method.
...
Give the authenticator a name and tap Send Registration Link (1) or Generate QR Code (2).
...
Multifactor Authentication
Tap the Add Factor option to add a new multifactor method.
...
Info |
---|
NOTE: To use your phone with SMS, you must verify your phone number first. See below for help. |
...
Assigning Security Roles to Users
Panel | ||||||||
---|---|---|---|---|---|---|---|---|
| ||||||||
What are Security Roles? Roles are used to assign application permissions and company-level access rights. |
...
Select a Role and tap Update to save any changes.
...
Default Roles and Security Matrix
ConnectSecure provides the following built-in roles with permissions, as listed in the table below.
Role | Overview | Assets | Vulnerabilities | Compliance | Active Directory | PII | Read | Write |
---|---|---|---|---|---|---|---|---|
ADMIN | Yes | Yes | Yes | Yes | Yes | Yes | Yes | Yes |
ACTIVEDIRECTORYVIEWER | Yes | No | No | No | Yes | No | Yes | No |
ACTIVEDIRECTORYWRITER | Yes | No | No | No | Yes | No | Yes | Yes |
APPROVER (for suppression approval only) | No | No | No | No | No | No | Yes | No |
ASSETVIEWER | Yes | Yes | No | No | No | No | Yes | No |
ASSETWRITER | Yes | Yes | No | No | No | No | Yes | Yes |
COMPLIANCEVIEWER | Yes | No | No | Yes | No | No | Yes | No |
COMPLIANCEWRITER | Yes | No | No | Yes | No | No | Yes | Yes |
PIIVIEWER | Yes | No | No | No | No | Yes | Yes | No |
PIIWRITER | Yes | No | No | No | No | Yes | Yes | Yes |
VULNERABILITYVIEWER | Yes | No | Yes | No | No | No | Yes | No |
VULNERABILITYWRITER | Yes | No | Yes | No | No | No | Yes | Yes |
Info |
---|
In the previous version of ConnectSecure, we had a role called 'ITADMIN,' which is no longer found in V4. To grant ITADMIN access similarly in V4, you should assign the following roles:
|
...
Company Level Allow/Deny Access Options
You can restrict a user to a specific company or set of companies based on the Security Role assigned.Select any role, except for Admin, to see those options.
Allowed Companies
...
Denied Companies
Choose the Denied Companies radio option, then select from the Choose Company drop-down.
...
API Key
You can obtain an API Key from the Member by navigating to Global > Overview/Dashboard > Users >User Management > tap the three-dot Action menu > API Key.
...
This will display your Client ID and Client Secret values.
...
Need Support?
Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.
...