eScan BlogeScan Blog    eScan WebsiteeScan Website    eScan ForumeScan Forum    eScan FeedseScan Feeds     
    
Languages:     

From eScan Wiki

(Difference between revisions)
Jump to: navigation, search
Revision as of 10:50, 4 July 2016
Webmktg (Talk | contribs)
(<B><font size=5 color=#24B200>Administrator Password'''</font></B>)
← Previous diff
Revision as of 11:53, 6 March 2020
WikiSysop (Talk | contribs)
(<B><font size=5 color=#24B200>Administrator Password'''</font></B>)
Next diff →
Line 10: Line 10:
|} |}
-<h2 id="mp-tfp-h2" style="margin:0; background:#C7E587; font-size:120%; font-weight:bold; border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">eScan Version 11 (and above) Online Help</h2>+<h2 id="mp-tfp-h2" style="margin:0; background:#C7E587; font-size:120%; font-weight:bold; border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">eScan Version 14 (and above) Online Help</h2>
{| class="wikitable" border="0" {| class="wikitable" border="0"
|- |-
Line 48: Line 48:
==<B><font size=5 color=#24B200>Use Separate Uninstall Password'''</font></B>== ==<B><font size=5 color=#24B200>Use Separate Uninstall Password'''</font></B>==
<br><br> <br><br>
-It allows you to define uninstall Password which will be required before uninstalling eScan Client from managed endpoints manually. The user will not be able to uninstall eScan Client without entering this password.+It allows you to define uninstall Password which will be required before uninstalling eScan Client from managed endpoints manually. The user will not be able to uninstall eScan Client without entering this password.<br><br>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-size: 33px; color: rgb(153, 204, 0); font-family: Calibri, sans-serif;">Two-Factor Authentication (2FA)</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">The system login password is Single-Factor Authentication which is considered unsecure as it may put your organization’s data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your basic system logon. The 2FA feature requires personnel to enter an additional passcode after entering the system login password. So, even if an unauthorized person knows system credentials, the 2FA feature secures a system against unauthorized logons.&nbsp;</span></p><br>
 +<table border="1" cellpadding="0" cellspacing="0" style="border-collapse:collapse;border:none;">
 +
 + <tr>
 + <td style="width:59.4pt;border:solid black 1.0pt;background:#C6D9F1;padding:0in 5.4pt 0in 5.4pt;" width="12.824675324675324%">
 + <p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;text-align:center;"><span style="font-family:
 + Calibri, sans-serif;"><strong><span style="color:black;">NOTE</span></strong></span></p>
 + </td>
 + <td style="width: 402.7pt; border-top: 1pt solid black; border-right: 1pt solid black; border-bottom: 1pt solid black; border-image: initial; border-left: none; background: rgb(198, 217, 241); padding: 0in 5.4pt; vertical-align: middle;" valign="top" width="87.17532467532467%">
 + <p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><span style="color:black;">Currently, only Windows systems can be protected with the 2FA feature.</span></span></p>
 + </td>
 + </tr>
 +</table><br>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">With the 2FA feature enabled, the system will be protected with basic system login and eScan 2FA. &nbsp;After entering the system credentials, eScan Authentication screen (as shown below) appears. The personnel will have to enter the 2FA passcode to access the system. A maximum of three attempts are allowed to enter the correct passcode. &nbsp;If the 2FA login fails, the personnel will have to wait for 30 seconds to log in again.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">To enable the Two-Factor Authentication feature, follow the steps given below:</span></p>
 +<ol style="list-style-type: decimal;margin-left:undefined;">
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">In the eScan web console, go to <strong>Managed Computers</strong>.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Click <strong>Policy Templates</strong> &gt; <strong>New Template.</strong></span></p></li><br>
 +<table border="1" cellpadding="0" cellspacing="0" style="border-collapse:collapse;border:none;">
 + <tr>
 + <td style="width:41.4pt;border:solid black 1.0pt;background:#C6D9F1;padding:0in 5.4pt 0in 5.4pt;" width="8.928571428571429%">
 + <p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;text-align:center;"><span style="font-family:
 + Calibri, sans-serif;"><strong><span style="color:black;">NOTE</span></strong></span></p>
 + </td>
 + <td style="width: 420.7pt;border-top: 1pt solid black;border-right: 1pt solid black;border-bottom: 1pt solid black;border-image: initial;border-left: none;background: rgb(198, 217, 241);padding: 0in 5.4pt;vertical-align: top;" valign="top" width="91.07142857142857%">
 + <p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><span style="color:black;">You can enable the 2FA feature for existing Policy Templates by selecting a Policy Template and clicking <strong>Properties</strong>. Then, follow the steps given below:</span></span></p>
 + </td>
 + </tr>
 +</table><br>
 +<!--<ol style="list-style-type: undefined;margin-left:undefined;"-->
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Select the check box <strong>Administrator Password</strong> and then click <strong>Edit</strong>.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Click <strong>Two-Factor Authentication</strong> tab.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Select the check box <strong>Enable Two-Factor Authentication</strong>. The Two-Factor Authentication feature gets enabled.</span></p></li>
 +</ol>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong><span style="font-size:21px;">Login Scenarios</span></strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">The 2FA feature can be used for following all login scenarios:</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>RDP</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">RDP stands for Remote Desktop Protocol. Whenever someone takes remote connection of a client’s system, the personnel will have to enter system login credentials and 2FA password to access the system.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Safe Mode</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">After a system is booted in Safe Mode, the personnel will have to enter system login credentials and 2FA password to access the system.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Local Logon</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Whenever a system is powered on or restarted, the personnel will have to enter system login credentials and 2FA password to access the system.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Unlock</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Whenever a system gets locked, the personnel will have to enter login credentials and 2FA password to access the system.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;">
 + <br>
 +</p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong><span style="font-size:21px;">Password Types</span></strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">If the policy is applied to a group, the 2FA password will be same for all group members.&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">The 2FA password can also be set for specific computer(s).&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">You can use following all Password Types to log in:</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Use eScan Administrator Password</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">You can use the existing eScan Administrator password for 2FA login. This password can be set in <strong>eScan Password</strong> tab besides the <strong>Two-Factor Authentication</strong> tab.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Use Other Password</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">You can set a new password which can be combination of uppercase, lowercase, numbers, and special characters.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;"><strong>Use Online Two-Factor Authentication</strong></span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">To use this feature, follow the steps given below:</span></p>
 +<ol style="list-style-type: decimal;margin-left:undefined;">
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Install the Authenticator app from Play Store for Android devices or App Store for iOS devices.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Open the Authenticator app and tap <strong>Scan a barcode</strong>.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Select the check box <strong>Use Online Two-Factor Authentication</strong>.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Go to <strong>Managed Computers</strong> and below the top right corner, click <strong>QR code for 2FA</strong>. A QR code appears.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Scan the onscreen QR code via the Authenticator app. A Time-based One-Time Password (TOTP) appears on smart device.</span></p></li>
 + <li><p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Forward this TOTP to personnel for login.</span></p></li>
 +</ol>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">After selecting the appropriate Login Scenarios and Password Types, click <strong>OK</strong>. The Policy Template gets saved/updated.</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">&nbsp;</span></p>
 +<p style="margin:0in;margin-bottom:.0001pt;font-size:16px;font-family:&quot;Calibri&quot;,&quot;sans-serif&quot;;"><span style="font-family:
 + Calibri, sans-serif;">Of all the Password Types, <strong>Online Two-Factor Authentication</strong> is a premium feature and available as an add-on pack. If you would like to use this feature after eScan evaluation period is over, write to our Sales department at
 + <a href="mailto:sales@escanav.com">sales@escanav.com</a>. Also, if you have any query regarding the 2FA feature or eScan products, feel free to write to our Support department at
 + <a href="mailto:support@escanav.com"><span style="color:blue;">support@escanav.com</span></a>.
 + </span></p>

Revision as of 11:53, 6 March 2020

Image:escan-g.jpg
· eScan  · MailScan  · Technologies   · Technical Info  · Security Awareness  · User Guides

eScan Version 14 (and above) Online Help

Back

Contents


Administrator Password



Administrator Password enables you to create and change password for administrative login of eScan protection center. It also enables you to keep the password as blank, wherein you can login to eScan protection center without entering any password


To Add / Change eScan administrator password


1. Specify the following field details.


FieldDescription
Set PasswordClick this option, if you want to set password.
Blank PasswordClick this option, if you do not want to set any password for login.

When you click this option, the Enter new Password and Confirm new Password fields become unavailable.

Enter new PasswordType the new password.
Confirm new PasswordRe-type the new password for confirmation.


2. Click the 'OK' button.


Use Separate Uninstall Password



It allows you to define uninstall Password which will be required before uninstalling eScan Client from managed endpoints manually. The user will not be able to uninstall eScan Client without entering this password.

Two-Factor Authentication (2FA)

The system login password is Single-Factor Authentication which is considered unsecure as it may put your organization’s data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your basic system logon. The 2FA feature requires personnel to enter an additional passcode after entering the system login password. So, even if an unauthorized person knows system credentials, the 2FA feature secures a system against unauthorized logons. 


NOTE

Currently, only Windows systems can be protected with the 2FA feature.


With the 2FA feature enabled, the system will be protected with basic system login and eScan 2FA.  After entering the system credentials, eScan Authentication screen (as shown below) appears. The personnel will have to enter the 2FA passcode to access the system. A maximum of three attempts are allowed to enter the correct passcode.  If the 2FA login fails, the personnel will have to wait for 30 seconds to log in again.

To enable the Two-Factor Authentication feature, follow the steps given below:

  1. In the eScan web console, go to Managed Computers.

  2. Click Policy Templates > New Template.


  3. NOTE

    You can enable the 2FA feature for existing Policy Templates by selecting a Policy Template and clicking Properties. Then, follow the steps given below:


  4. Select the check box Administrator Password and then click Edit.

  5. Click Two-Factor Authentication tab.

  6. Select the check box Enable Two-Factor Authentication. The Two-Factor Authentication feature gets enabled.

 

Login Scenarios

The 2FA feature can be used for following all login scenarios:

 

RDP

RDP stands for Remote Desktop Protocol. Whenever someone takes remote connection of a client’s system, the personnel will have to enter system login credentials and 2FA password to access the system.

 

Safe Mode

After a system is booted in Safe Mode, the personnel will have to enter system login credentials and 2FA password to access the system.

 

Local Logon

Whenever a system is powered on or restarted, the personnel will have to enter system login credentials and 2FA password to access the system.

 

Unlock

Whenever a system gets locked, the personnel will have to enter login credentials and 2FA password to access the system.


Password Types

If the policy is applied to a group, the 2FA password will be same for all group members. 

The 2FA password can also be set for specific computer(s). 

You can use following all Password Types to log in:

 

Use eScan Administrator Password

You can use the existing eScan Administrator password for 2FA login. This password can be set in eScan Password tab besides the Two-Factor Authentication tab.

 

Use Other Password

You can set a new password which can be combination of uppercase, lowercase, numbers, and special characters.

 

Use Online Two-Factor Authentication

To use this feature, follow the steps given below:

  1. Install the Authenticator app from Play Store for Android devices or App Store for iOS devices.

  2. Open the Authenticator app and tap Scan a barcode.

  3. Select the check box Use Online Two-Factor Authentication.

  4. Go to Managed Computers and below the top right corner, click QR code for 2FA. A QR code appears.

  5. Scan the onscreen QR code via the Authenticator app. A Time-based One-Time Password (TOTP) appears on smart device.

  6. Forward this TOTP to personnel for login.

 

After selecting the appropriate Login Scenarios and Password Types, click OK. The Policy Template gets saved/updated.

 

Of all the Password Types, Online Two-Factor Authentication is a premium feature and available as an add-on pack. If you would like to use this feature after eScan evaluation period is over, write to our Sales department at <a href="mailto:sales@escanav.com">sales@escanav.com</a>. Also, if you have any query regarding the 2FA feature or eScan products, feel free to write to our Support department at <a href="mailto:support@escanav.com">support@escanav.com</a>.


eScan Copyright © 2015 MicroWorld Technologies Inc.- AntiVirus & Content Security.       Send your feedback to solutions@escanav.com eScan Wiki

    Privacy policy  About eScan Wiki  Disclaimers