Skip to main content

Activating two-factor or allow-/blocklist IP-adresses

By using "Policies", you are able to additionally secure the oneclick™ Unified Workspace or sensitive apps. You can prohibit access from certain IP addresses/areas or restrict access with two-factor authentication. Afterwards, you can combine as many policies as you want by selecting multiple policies in an app configuration or user license.

You want to create a policy that "Limits access by two-factor" or "Prohibits access"? Then proceed as follows:

 

1. Create Policy

  1. In the Management tab please click Policies.
  2. Next, click on the + Icon to create a new policy.
  3. Assign a name to the policy for later recognition.
  4. Choose the "Type" of the policy:
    • Access prohibited Access is completely denied.
    • Access limited by two-factor authentication Depending on your selection, access is limited using a second factor via "E-Mail",  "SMS" or every "TOTP Authenticator", e.g. by Google or Microsoft. The access code via "E-Mail" expires after 10 minutes, and via "SMS" after 5 minutes.
  5. Use the following section to optional set the IP ranges for which this policy should apply.
    • Exactly these IP ranges Select this option if you want to prohibit or limit access to specific IP ranges.
    • All but these IP ranges Select this option if you want to allow access only to certain IP ranges or like to leave it unrestricted. You can, for example, activate the second factor for all home office users by enabling the "All except these IP ranges" option, clicking on the + Icon and entering your office IP address here.
  6. Use the following section to optional set the groups to which this rule should apply to.
    • Exactly these groups Select this option if you want the policy to be valid for specific groups.
    • All but these groups Select this option if you want the policy to be valid for all but specific groups.
  7. Click on Save.

 

2. a) Activate policy in the user license

To prompt for the second factor when the user logs in, select the policy in a user licenses.

  1. In the Management tab please click Policies.
  2. Go to the details page of your policy by clicking on the List icon.
  3. Click on the Pencil icon in the "User licenses" tile.
  4. Select one or more User licenses and finish the process by clicking Save. The policy now takes effect when users log in.

2. b) Activate policy in the app configuration

To secure a single app that requires special protection, select the policy in an app configuration.

  1. Select the Management tab please click Policies.
  2. Go to the detail page of your policy by clicking on the List icon.
  3. Click in the "App configurations" tile on the Pencil icon.
  4. Select one or more App configurations and finish the process by clicking Save. The policy now takes effect when the app is opened.