Users
- 1 Add User
- 1.1 All Companies
- 1.2 Specific Companies
- 1.3 Clone
- 1.4 API Key
- 1.5 MFA
- 1.6 Reset Credential Link
CyberCNS uses a Role-Based Access Control system so the users created can be attached to particular roles.
The User section allows creating User logins for different teams like customer support, security specialists & additional logins in the organisation. It can be attached to the Roles they will play (eg. User or administrator).
The User can be restricted to have access to specific companies while creation.
The API Key is included in the command line script while installing the agent. For agent installation, the user API Key is no longer required.
In case the User needs to set his MFA on a different device ( May be a device used for authentication is not available), FORGOT PASSWORD option on the login page can be used. This will allow user to set MFA for the new device.
RESET MFA can be achieved by any ADMIN user.
Add User
On the global menu() Navigate to the Users tab.
Add user logins for members who will use & manage CyberCNS for an organisation. Click on +Add to add a new user.
In the depicted below image enter the details of First Name, Last Name, Email, select the Role to be attached to the user, Company Access and MFA status. By default, the Admin, It_admin, No Role, and Read-only roles are available in CyberCNS.
Once the required details are provided to create a user, the credentials will be sent to the user’s email id. Using those credentials, users can log in to the CyberCNS.
Users will have a reset password option while logging into the CyberCNS in case required to reset the password.
Created users in CyberCNS can be given access to selected companies/all companies as per admin choice.
By clicking on the Company Access option, users can view a list of all the companies they have access to or restricted from, as shown below.
All Companies
Admin has the ability to create new roles which can have granular access defined and attach users to them.
Admin users will have all the privileges OR complete control over the CyberCNS portal.
It_admin users will have no permission To Create/Delete/Edit Companies, Users & Roles.
No Role user will not be able to view any information in CyberCNS unless that user is assigned a role by the admin. This role is auto-created for MS SSO capability wherein the user does not exist in CyberCNS but once SSO capability is defined, the user gets permission to log in to CyberCNS. In case such users try to login into CyberCNS they will be assigned No Role.
Read-only users will have permission to view all the data.
In case All companies are chosen, enter the details of the User and click on Save.
Specific Companies
If Specific companies are chosen, select the option to choose companies that need to be allowed and denied.
In the depicted below image, select the companies and give access to the companies by selecting Allowed Companies and click on Update.
Select the companies to deny access to the companies by selecting Denied Companies and click on Update.
Once it is updated it will notify as, If the companies are selected in allowed companies it will show the count of the companies which are allowed, if denied companies are selected it will show the count of the companies which are denied. If none of the companies is selected it will show as All companies are allowed, Please click on Save.
when you click on Save, you will get a notification as User added successfully, message.
There is an option to Edit and Delete the Users using the Action column. Any Users can be edited and deleted if needed.
Clone
During the cloning process, new users are created with the same existing role.
Enter the new User’s First Name, Last Name and email. By default, it will select the Role which the User has chosen to clone.
Admins possess access to all companies.
When a role other than Admin is chosen, users will have the flexibility to either apply that role across All Companies or opt to select Specific Companies for its application.
Company-level access can be modified, In addition to the existing ones more companies can be either Allowed or denied.
Once the below details are provided, click on Save.
API Key
A user API key is used for RMM and security purposes.
In the depicted below image select the API key option to get the API Key for the specific user.
A Client ID and Client Secret details are provided when API Key is selected. If not required delete the API Client key.
The below image and the document are the sample Python code for CyberCNS API.
For SAAS users:
For On-prem users:
Please refer to CyberCNS API documentation https://cybercns.atlassian.net/wiki/spaces/Verison2/pages/1755676675 for more details.
MFA
In the depicted below image, reset MFA can be achieved using the Reset MFA option.
Confirmation of Delete will be asked. In the Delete message, Dialog Box click on Yes to reset MFA. Successful deletion is indicated by the, Removed Successfully, message.
Once the MFA is reset, click on the MFA option to set the MFA and follow the instructions on the screen to set it up.
Each User's Company Access and MFA status can be viewed in the Users section.
Reset Credential Link
In the user section, only the administrator will have the privileges to reset the credentials of a specific user.
Upon clicking the link, users will be prompted to confirm their choice by selecting either Yes or No.
Users will receive a notification indicating that a password reset email has been sent to their email address.
If the user has full company access, the Company Access will be displayed as ‘All’ for that user. If the user has specific companies, it is displayed as ‘Restricted’.
Each user's MFA status can be found here. If the MFA is enabled, it appears as Enabled; if it is disabled, it appears as Disabled.
This completes the Users section.