Keeping email and web security services up and running is vital to businesses, and protecting the management of these services via a simple username and password is not enough for some organizations.
For those who desire additional security to further control access to the management portal of Symantec Email Security.cloud and Symantec Web Security.cloud, Symantec introduces new access control features:
- Two-factor authentication
- IP address restriction
Both two-factor authentication and IP address restriction options are being added to prevent unauthorized access to the management portal (also known as ClientNet). Administrators will have the option to enable one or both of these features for all administrative users within their organization.
Two-factor authentication requires something you know (like a user name and password) plus something you have (such as a one-time password from an app or token) to allow access. We are leveraging Symantec Validation and ID Protection Service (VIP) to secure access to the management portal using a one-time password credential, available in a variety of hardware, software, or mobile form factors, to augment a traditional password. By enabling two-factor authentication, administrators can protect against hacking attempts and server-side vulnerabilities that put passwords at risk.
IP address restrictions allow administrators to specify IP addresses or ranges from which access to the management portal is allowed. If someone attempts to access the management portal from an unauthorized IP address, access will be denied.
These new options are available in the management portal starting May 3rd, 2014. The easily-enabled access control features are available for no additional cost.
Learn more about Symantec cloud products: http://www.symantec.com/cloud
Learn more about Symantec VIP: http://www.symantec.com/vip