Users
The Users page shows a table of all users in the Infinity Portal account.
You can sort the users in the table by columns.
User Roles
There are two main user roles:
-
Global Roles
Roles that apply to the Infinity Portal platform and all the services in the Infinity Portal. Currently, the Infinity Portal supports these roles:
-
Admin (Read and write) - Gives read and write permissions across all services in your Infinity Portal account. Can integrate an Identity Provider A system entity that creates, maintains, and manages identity information for principals and also provides authentication services to relying applications within a federation or distributed network. Acronym: IdP or IDP. (IdP) with Infinity Portal. When a new service is connected to your account, an Admin user automatically gets read and write permissions for this service.
-
Read-Only - Gives full read-only visibility to all services in your Infinity Portal account. When a new service is activated in your account, a Read-Only user automatically gets read permissions in this service.
-
User Admin - Manages all aspects of users, user groups, and roles in your Infinity Portal account. A User Admin can access only the Users page and the User Groups page.
-
Primary Administrator - In addition to the Admin permissions, this access level gives the ability to delete the account, add or remove Primary Administrator roles, activate Support Mode, and enforce Two-Factor Authentication (2FA). While we recommend to limit the number of users with this level of access for security reasons, at least one user must be given these privileges for each account.
You can associate multiple roles with each user.
-
-
Specific Service Roles
Roles that apply only to a specific service. The specific service roles are in addition to the global roles and do not override them.
There are two types of service roles:
-
Default service roles - Out-of-the-box for each of the service roles.
-
User-customized roles - The service creates the roles. The roles apply only to the account in which they are created.
Some services support the association of multiple roles with a user and some services are single-role services. This means that they support the association of only one role for each user.
Note - When a user tries to access a service but the user's role(s) does not include access to the service, an Access Forbidden message appears.
-
Configuring Users
-
Go to > Users.
-
To see the updated users' information, click Refresh.
-
Right-click the top row of the table that contains the names of the columns.
A popup window opens.
-
Select columns to show in the table.
Only the selected columns appear in the table.
-
In the Search field, click Filter .
The Filters pane opens on the right side of the Dashboard.
-
To find specific users, enter these details:
-
Name
-
Email
-
etc.
-
-
To clear the filter, click Clear All.
You can invite new and existing users, via an email invitation, to the Infinity Portal account that you manage as an administrator. The user that receives the invitation needs to accept it and click the provided link. If the user does not accept and does not click the link, their status remains Pending and you cannot add them involuntarily. The invitation is valid for 30 days only.
|
Note - All fields marked with an asterisk (*) are mandatory. |
-
Navigate to > Users and click New in the toolbar.
-
In the Name field, enter a user name.
-
In the Email field, enter the new user's email address.
-
Enter the telephone number of the new user in the Phone field:
-
Select a region from the flagged list on the left.
-
Complete the number on the right side.
-
-
In the User Groups field, select the User Groups for the new user from the list. You can select multiple User Groups for each user.
-
In the Global Roles field, select the roles for the new user from the list. You can select multiple roles for each user.
Note - When you give the Admin role to a user in an MSSP Managed Security Service Provider (MSSP) - An managed security service provider (MSSP) provides outsourced monitoring and management of security devices and systems. Common services include managed firewall, intrusion detection, virtual private network, vulnerability scanning and anti-viral services. account, all child accounts of this MSSP account inherit the Admin user. For more information on child accounts, see Manage Accounts.
-
Below the Specific service roles field, select the roles corresponding to the user in each application.
Note - When you select Admin or Read-Only in Global Roles, you automatically add them to the list of roles connected to the user in all the other applications.
-
Click Add to save or Cancel to exit without saving the new user.
The user shows with the Pending status on the full users list.
-
When the user receives the email invitation and clicks the accept the invitation link, the Infinity Portal checks if this is a new or existing user.
-
For new users, the Infinity Portal opens with the activation screen and a request to set up a new password. The password policy shows on the same page.
-
The user enters the password, confirms it, selects I accept the Infinity Portal terms of service and the privacy policy and clicks Activate.
-
The Infinity Portal activates the user.
-
-
For existing users, the Infinity Portal approves the user and shows an approval message.
The Infinity Portal adds the user to the account and updates their status from Pending to Active.
-
-
The user clicks Back to sign in and logs in to the Infinity Portal. New users have to provide their email and password.
When the users log in to the Infinity Portal, the account shows in their Profile Settings below Account.
-
Select the required user from the list and click Edit in the toolbar.
-
Make the required changes. You can edit the user's name, phone number, User Groups affiliation. and Global and Specific Service A Check Point service offering that helps customers with deployments or technical services for Check Point products. Roles.
-
Click Save.
Reset Two-Factor Authentication (2FA)
Resetting 2FA for a user requires the user to re-configure 2FA. Reset 2FA when a user loses access to an account or when you think than an unapproved individual gained access.
|
Note - To reset 2FA, you must have Administrator permissions in the Infinity Portal. |
-
Navigate to > Users.
-
Select a user from the table and click Reset 2FA.
The next time the user tries to log in to the Infinity Portal, the user is re-directed to the Two-Factor Authentication wizard. To access the Infinity Portal, the user must complete the wizard and then use 2FA to log in.
-
To see updated user information, click Refresh.
If the user configured 2FA successfully, the 2FA Status shows as Active.