2FA Policy

Scope: SessionLimit 2.0

The 2FA policy is to ensure that end users undergo secondary verification when logging into their computers. It is activated as soon as the user logs in and asks the user for a 6-digit OTP code. OTP codes can be obtained by the following 2 methods.

  1. SMS

  2. Authenticator mobile app

Although the SMS feature can be selected here, it has 2 prerequisites.

  1. In the LDAP settings, the attribute containing the users' mobile phone numbers must be selected.

  2. SMS settings must be made.

Buttons Meaning in 2FA Authentication Policy

  1. Policy Assign: The policy is assigned to the user, security group or Organizational unit. This action takes immediate effect if performed and enables the user to perform secondary verification by displaying a 2FA screen in active sessions. Sessions are only intervened in systems with agent installed. The session on the system that does not have an agent installed cannot be interfered with.

  2. Update Policy: It is used to change 2FA policy settings.

  3. Policy Assign Details: Displays the assignment information of the policy.

  4. Delete Policy: It is used to delete the policy.

Policy Assign

  • Choose domain

  • Select the criteria to be searched in the search user field.

  • Enter at least 1 character in the search field, press the search button.

  • Select the AD objects you want to protect with 2FA Policy from the list and press the Add button.

  • Once you finish adding to the list, save it with the Save button.

  • If you want to remove it after adding it to the list, you can delete a single object with the Delete button, or the entire list by clicking remove list.

Update Policy

Update policy screen is used to make changes to the existing policy.

  1. Which type of 2FA method should be used?

  2. In what type of sessions should it be used? etc.

Policy Assign Details

The users, groups and OUs to which the policy is applied are displayed on the Policy Assign Details screen. deleting and clearing the list operations can be carried out from this screen.

Delete Policy

It is used to delete the policy. Once the policy is deleted, 2FA transactions related to this assignment will not occur again.

PreviousSession Protection PolicyNextLimitations

Last updated