Articles in this section

See more

Security Policies

  • Updated
Follow

Overview

A security policy is a rule that can deny access to a Flex system user based on time or IP address. A security policy can be assigned to either a single user or an entire security group.

For example, maybe you don’t want members of the Shop Techs group accessing Flex from anywhere besides the warehouse. You can create a security policy that will only allow Flex access when a user is on a certain IP address. In this case, you would find out your IP address and put it in the White Listed Networks area of the security policy.

You could also restrict Flex access based on day and time. If you don’t want members of the Shop Techs group accessing Flex on weekends, you can include that under the Time Restrictions area of the security policy.

Creating a Security Policy

  1. On the System Settings menu, click Security Policies.
  2. Click New Security Policy in the Workbench Menu.
  3. Give the new policy a name, description, and choose whether or not it should be enabled.
  4. Click CREATE. This will cause the IP address and time restriction options to appear.
  5. Add and edit the IP address and time restriction options based on the nature of your security policy (see the next two sections for instructions).
  6. Click UPDATE.

Adding an IP Address Restriction to a Security Policy

With a security policy created, you can apply IP address restrictions to the policy. You can add White Listed Networks (IP addresses that are allowed) and Black Listed Networks (IP addresses that are not allowed).

How to add a white listed network to a security policy:

  1. Open the security policy that you want to edit.
  2. Click NEW WHITE LISTED NETWORK.
  3. Enter the network address and subnet mask (if applicable) details.
  4. Click OK.

white-listed-network.png

If you apply a security policy with a white listed network to a contact or security group, then that contact or members of that security group will only be able to log into Flex if they are on a computer using the IP address listed in the white listed network details.

How to add a black listed network to a security policy:

  1. Open the security policy that you want to edit.
  2. Click NEW BLACK LISTED NETWORK.
  3. Enter the network address and subnet mask (if applicable) details.
  4. Click OK.

black-listed-network.png

How to remove a white listed or black listed network from a security policy:

  1. Open the security policy that you want to remove the network from.
  2. Hover over the network details and click (notice the background behind the network details turns a shade of green).
  3. Click DELETE to remove the network details.
  4. Click UPDATE (bottom right) to update the security policy.

removing-ip-restriction.png

Adding a Time Restriction to a Security Policy

Time restrictions on a security policy can restrict users from accessing Flex during certain hours. If you apply a security policy with a time restriction to a contact or security group, then that contact or members of that security group will not be able to log into Flex on the days and between the times selected.

Adding a time restriction to a security policy:

  1. Open the security policy that you want to add a time restriction to.
  2. Click NEW TIME in the No Access Times section.
  3. Enter the time restriction details.
  4. Click OK.

creating-time-restriction.png

Removing a time restriction from a security policy:

  1. Open the security policy that you want to remove the time restriction from.
  2. Hover over the time restriction details and click (notice the background behind the time restriction details turns a shade of green).
  3. Click DELETE to remove the time restriction.
  4. Click UPDATE (bottom right) to update the security policy.

removing-time-restriction.png

Applying a Security Policy to a User

  1. On the System Settings menu, click Users.
  2. Double-click on the user name that you want to add a security policy to.
  3. Choose an option from the Security Policy menu.
  4. Click UPDATE.

apply-security-policy-user.png

Applying a Security Policy to a Security Group

  1. On the System Settings menu, click Security Groups.
  2. Double-click on the security group name that you want to add a security policy to.
  3. Choose an option from the Security Policy menu.
  4. Click UPDATE.

apply-security-policy-group.png

Deleting a Security Policy

  1. On the System Settings menu, click Security Policies.
  2. Double-click on the security policy that you want to delete.
  3. Click Delete this Security Policy in the Workbench Menu.

 

Related articles