Go through the guide to get knowledge about how to get the application works.

How to Guide

Getting Started: Guide to CyLock MFA

Introduction:

CyLock MFA is a powerful, token-less, advanced Out-of-Band Multi-Factor Authentication (MFA) solution which provides strong authentication & authorization mechanism using end users mobile devices. CyLock MFA is designed to protect user accounts, applications and devices.

Organizations or individuals can protect their applications by using CyLock Multifactor Authentication (CyLock MFA). CyLock Portal provides administrators with the ability to manage their users, protect applications and configure various MFA parameters.

To use CyLock MFA, users have to subscribe for a plan and register their details to gain access to CyLock Portal. Read the documents carefully before using CyLock MFA effectively.

CyLock Portal will allow organization administrator or individuals to manage their user accounts, protect applications, manage devices etc. The brief description of the functionalities is given in subsequent sections.

CyLock MFA is available on CyLock Mobile App - Google Play Store. Download CyLock MFA mobile app CyLock Authentication to carry out authentication.

Getting started

CyLock MFA Portal will allow organization administrator or individuals to manage their user accounts, protect applications, manage devices etc. The brief description of the functionalities is given in subsequent sections.

Registration:

Visit www.cybernexa.com to know more about MFA plans. Subscribe to a plan. For registration, do the following:

  1. Review the subscription plan based on your requirements
  2. Click the subscription plan you want to opt for
  3. This will open portal.cybernexa.com as shown below
    4. Registration - CyLock
  4. To sign-up new account, click “Create your Account (Sign-up)” in the Login page. The system navigates to Sign-up page as shown below.
    5. Signup page - CyLock

  5. The following table lists the required fields and the corresponding details.

    Field First name of the user Validation
    First Name Doe Accepts 2 to 30 upper-case and lower-case alphabets and space.
    Last Name Last name of the user Accepts 1 to 30 upper-case and lower-case alphabets and space.
    Email Address Valid email address of the user Accepts a valid email format.
    Phone Number Valid phone number of the user Accepts 10 numbers.
    Password Password to enter the CyLock portal Accepts minimum 8 characters and contain at least 1 lowercase,1 uppercase,1 numeric,1 special character
    Confirm Password Confirmation password that is same as the entered password Should match the characters provided in the Password field.
    Select Organization / Individual Option to select the type of login. Available options are:
    • Organization – indicates that you are signing up to create an organizational account
    • Individual – indicates that you are signing up to create a personal account
    Note: After selecting an option, this parameter name changes to the selected option.     		NA
    Organization Name Name of the registering Organization
    Name of the registering Organization Option to select the employee count range in the organization. Available options are:
    • 1 – 100
    • 100 – 500
    • 500 – 1000
    • 1000 – 2000
    • 2000 – More than 2000
    		 NA

    Note: Organization Name and Select No. of Employees fields are displayed only when Organization is selected from the Select Organization / Individual drop-down.

  6. 2. Enter all required fields and click “Sign-up” button. The system generates and sends an email with a verification token to the provided email ID as shown below.

    Note: Below is the Registration Token sample in the email.

    7. Registration Token - CyLock

    While sending verification token, the system displays the Email Verification screen as shown below.

    Email Verification screen - CyLock
  7. Enter the received registration token code in the Enter your token code field and click the “Verify” button. The system displays a success message as shown below.
    8. Success message - CyLock
  8. Click the OK button. The system displays the Thank you screen.
    9. Thank you screen - CyLock
  9. Click "Login" to navigate to the Login page.

Login to CyLock MFA Platform

You can log into the CyLock MFA Platform from any of the web browser available in your system.

Login to CyLock MFA Platform STEPS TO LOGIN TO PORTAL.CYBERNEXA.COM
  • Enter a valid email id and password in respective fields and click “Login”.

    • Note: If you already have a CyLock account then system navigates to CyLock Homepage.

    Steps to login to portal - CyLock

    Forget Password

    If you have forgotten your password and want to change it, click “Forgot Password?” in the Login Page. The system displays Forgot Password screen as shown below.

    Forget Password - CyLock
    1. Browse to portal.cybernexa.com
    2. Click “Forgot Password” link in the Login Page as shown above
    3. Forgot Password Screen will open as shown in the below screen
    4. Enter registered email id
    5. Click “Send Email” button to receive a token Code in your Email Address
      6. Email Verification - CyLock
    6. Enter token received in the Token verification Screen as shown below
    7. Once the token value matches the Database, it opens the Change Password Screen as given below to enter your New Password for your Login ID.

    To reset your password

    1. In the Get Email step, enter the registered Email address and click the “Send Email”. An email with the token is sent to your registered email address.

      2. Note:Below is the Reset Token sample in the email.

      Reset password - CyLock

      While sending the token to the registered email address, the system navigates to “Token Verification” screen as shown below.

      Forgot password screen - CyLock
    2. In the Token Verification step, enter the token received and click the “Verify Token” button. The system displays the Change Password step as shown below.
      3. Forgot password screen - CyLock
    3. Enter the required password and click the “Change Password” button. The system displays a Success message.
      4. Password changed success screen - CyLock
    4. Click “Ok” to display the CyLock MFA login screen.
    5. Enter the new password and log in to the CyLock Portal.

    Home-page

    After successful login to CyLock MFA Portal, Homepage is displayed as shown below.

    Homepage displays the Login User Name / Organization Name on the top right corner of the screen. On clicking Login User Name, dropdown menu including Profile, Change Password and Logout are displayed.

    Home page - CyLock

    Admin Dashboard

    Admin Dashboard includes below functional menus on the left pane of the Homepage as in Figure below. They are

    • User Management
    • Application
    • Devices
    • Reports
    • Settings

    On the right pane of the Homepage, basic metrics that includes Device Connected, Secured Application and Registered Users are shown. Below the metrics, Authentication History is displayed as shown in home page.

    Basic Metrics:
    • Device Connected – Number of devices registered under various applications by Organization users
    • Secured Application – Number of applications that have been secured in the Organization
    • Registered Users – Number of registered users in the Organization using CyLock MFA

    Authentication History:An audit trail lists all the authentications that has been performed by users of the Organization. The list view includes below details

    • Application
    • Username
    • Device
    • Transaction
    • ReqTime (Request Time)
    • Geo
    • Status

    The list view displays 10 transactions in a page and can be customized using the drop-down selection as shown below.

    Menu - CyLock

    Authentication History list view is also facilitated with “Search” that allows quick search of authentication details of a User as shown below.

    Authentication History - CyLock

    User Management

    User Management allows Organization Administrator to add User, change User status, view / update User information and delete User from the Organization. User Management includes two types of Users, namely Portal Users and Local Users.

    Portal Users have permissions to access CyLock MFA portal similar to that of Organization Administrator. In other words, Portal Users are end users who use CyLock MFA for authentication purpose.

    Local Users do not have permissions to access CyLock MFA portal, but are created for authenticating them against network devices login.

    User Management - CyLock

    From the Dashboard menu, expand User Management menu and click Portal User link, the system displays User Management Dashboard. User Management Dashboard includes metrics and List of Registered Portal Users.

    Metrics includes as below:

    • Portal Users – Number of Portal Users
    • Active Users – Number of Active Portal Users
    • Inactive Users – Number of Inactive Portal Users

    The List of Registered Portal Users view includes below details

    • First Name – First Name of the Portal User
    • Last Name – Last Name of the Portal User
    • Contact Number – Contact Number of the Portal User
    • Email – Email id of the Portal User
    • Portal Access – Enable/Disable Cylock Portal Access
    • User Role – Type of User role
    • Status – Active/Inactive toggle
    • View/Update – link to view or update user details
    • Delete – Delete icon to remove the User account

    Adding Portal User

    1. In the Portal User list view, click “Add User” button as shown in below Figure. The System displays the “Add Portal User” form.
      2. Adding Portal User - CyLock
    2. In the Add Portal User form as shown in Below figure, enter below details.
      • First Name – required; First Name of the Portal User
      • Last Name – required; Last Name of the Portal User
      • Email – required; Email id of the Portal User
      • Contact Number – required; Contact Number of the Portal User
      • Enable Portal – optional; allows User to access CyLock Portal
      • User Role – required; Select Admin role or User role to access/view CyLock Portal
      Add Portal User form - CyLock
    3. Click “Save” to save all entries. The system displays a success message as shown below

      4. Note: Click “Cancel” to exit the form without saving.

      Success page - CyLock
    4. Click “Ok”. The system sends login credentials (2FA) to the registered email address of the Portal User so as to access CyLock Portal.

    Editing Portal User

    1. Browse to portal.cybernexa.com
      2. Editing Portal User - CyLock

      The system navigates to Edit Portal User form as shown below.

      Edit Portal - CyLock
    2. In the Edit Portal User Form, update parameters to be changed.

      3. Note: All fields except User Role are allowed to modify.

    3. Click “Update” to save all entries. The system displays a success message as shown below.

      4. Note: Click “Cancel” to exit the form without saving.

      Success page - CyLock
    4. Click “OK” to update User details.

    Deleting Portal User

    1. In the Portal User list view, click “Delete” icon corresponding to the Portal User. The system displays the below confirmation message to delete the Portal User.
      2. Deleting Portal User - CyLock
    2. Click “Confirm” to remove the selected Portal User Account. The system displays a success message.

      3. Note: Click “Cancel” in Delete User popup, to exit the process without deleting the User account.

    Enabling/Disabling Portal User

    1. In the Portal User list view, use Active button - CyLock toggle button corresponding to the Portal User. The system displays “Disable User” popup message.
      2. Enabling/Disabling Portal User - CyLock
    2. Click “Confirm” to disable the selected Portal User.

      3. Note: Click “Cancel” to exit disabling Portal User without saving.

    Local User

    Local User Dashboard allows the Organization Administrator to add Local User, import Local User, change User status, view / update User information and delete User from the Organization. On clicking Local User under User Management menu, User Management – Local User Dashboard is displayed as shown below.

    Local User Dashboard - CyLock

    User Management – Local User Dashboard includes metrics and List of Registered Local Users.

    Metrics displays Total Local Users – Number of Local Users.

    The List of Registered Local Users view includes below details

    • User Name – Display Name of the Local User
    • Contact Number – Contact Number of the Local User
    • Email – Email id of the Local User
    • Radius Auth – Enabled or disabled for RADIUS authentication
    • Expiry Date – Last date of service, if known for Contingent workers (Contracts)
    • Status – Active/Inactive toggle
    • View/Update – link to view or update user details
    • Delete – Delete icon to remove the User account

    Adding Local User

    1. In the Local User list view, click “Add Local User” button as shown in Figure below. The System displays the “New User form”.
      2. Adding Local User - CyLock

    2. In the New User form as shown in Figure below, enter below details.

      • User Name – required; Display Name of the Local User
      • Email – required; Valid Email id of the Local User
      • Contact Number – required; Valid Contact Number of the Local User
      • Expiry Date – optional; Last date of service, if known for Contingent workers (Contracts)
      • Radius Auth – Check to allow second factor authentication
      • Password – required;

        • (Recommended password is minimum 8 characters and contain at least 1 lowercase,1 uppercase,1 numeric,1 special character)

      Note: Adding Local User allows the system to create First Factor Authentication (1FA). If an organization does not have an identity store like Microsoft Active Directory, they can use the local store to create and carry out first factor authentication.

      New User form - CyLock
    3. Click “Save” to save all entries. The system displays a success message as shown below.
      4. Success page - CyLock
    4. Click “Ok” to register Local User successfully.

    Editing Local User

    1. In the Local User list view, click “View/Update” link corresponding to the Local User whose details need to be updated.
      2. Editing Local User - CyLock

      The system navigates to Edit Local User form as shown in below Figure.

      Edit Local User form - CyLock
    2. In the Edit Local User Form, update parameters that require change.
    3. Click “Update” to save all entries.

      4. Note: Click “Cancel” to revert any changes.

    Importing Local User

    1. In the Local User list view, click “Import Local User” button as shown below.
      2. Importing Local User - CyLock

      The System displays the “Download/Upload Template” screen.

      Download/Upload Template - CyLock
    2. Click “Download” button to download the import Local User download template in the “Downloads” folder of the Computer.

      3. Below is the snapshot of the template file.

      import Local User - CyLock
    3. Enter all information in the required fields and save to a destination folder.
    4. In the Download/Upload Template screen, choose the saved file from the destination folder and Click “Upload”.

      5. Note: Import is allowed for 100 user entries at a time using the template. The System displays below success message.

      Success- CyLock
    5. Click “Ok” to navigate the List page.

      6. Below snapshot shows the sample imported data.

      sample imported data - CyLock

    Deleting Local User

    1. In the Local User list view, click “Delete” icon corresponding to the Local User. The system displays the below confirmation message to delete the Local User.
      2. Deleting Local User - CyLock
    2. Click “Confirm” to remove the selected Local User Account. The system displays below success message.
    3. Click “Confirm” to remove the selected Local User Account. The system displays below success message.

      4. Note: Click “Cancel” in the Delete User popup to exit the process without deleting the User account.

    Enabling/Disabling Local User

    1. In the Portal User list view, use toggle button corresponding to the Local User. The system displays “Disable User” popup message.
      2. Enabling/Disabling Local User - CyLock
    2. Click “Confirm” to disable the selected Local User.

      3. Note: Click “Cancel” to exit disabling Portal User without saving.

    Application

    Application allows Organization Administrator to secure new application, view locked accounts, add/view users for each secured application, change application status, view/update application information and delete an application.

    From the dashboard menu, click Application to display the Application Dashboard on the right pane. Application Dashboard displays metrics and list of registered applications.

    • Total Users: – Total Users using CyLock MFA in an Organization
    • Active Users: – Total Active Users in an Organization
    • Inactive Users: – Total Inactive Users in an Organization

      • List of Registered Applications displays:

    • Application Name – Type of Application
    • Application Alias Name – Alias Name of the Application
    • Total Active Users – Number of Active Users associated to the Application
    • Status – Active/Inactive state of the Application
    • View/Update – View or update the Application Information
    • View Users – allows to navigate to Registered User List of the Application.
    • Delete – delete the application, only if no users associated to the Application
    Application- CyLock

    Securing an Application:

    Using CyLock MFA, Organizations / Individuals can enable MFA for the below types of Applications

    • Desktop Login
    • Web Applications
    • Network Login using Microsoft Active Directory
    • SSL VPN – Secure Sockets Layer Virtual Private Network 
    • SSH login – Server Login - Secure Shell or Secure Socket Shell
    • Microsoft AD FS (for SSO) – Microsoft Active Directory Federation Services (for Single Sign-On)

    Note:

    • Except Web Application, all other types of Applications can be used only once to secure Application.
    • Except Web Application, for securing all other applications, download corresponding agents/components to integrate with CyLock MFA platform. Use the details displayed during application protection.

    Pre-requisites: Securing an application requires an active CyLock MFA account. Refer “Getting Started” to start using CyLock MFA to protect your applications.

    Adding new Application

    1. In the List of Registered Applications view as shown below, click “Add Application” to navigate to Secure page.
      2. Adding new Application - CyLock
    2. In the Secure page, select Application by clicking corresponding checkbox as shown below
      3. Secure page - CyLock
    3. Click “Secure” button as shown in above image to navigate to Application Key page.
    4. In the Application Information page, enter below details as required.
      5. Parameter Description
      API Key Read-only, auto-generated unique key
      Customer ID Read-only, auto-generated unique key
      Server IP Address Valid Server IP Address
      Application URL Valid Application URL
      Application Alias Unique Application Alias Name

      Note:

      • Do not share the API Key and Customer ID with anyone.
      • Email Address & Contact Number should be unique across the organization
    5. Click “Save” to secure the application.

      6. Note: Press “Back” to cancel saving the Secured Application created and go back to the previous screen.

      Secured Application - CyLock

    Viewing Locked Accounts

    CyLock MFA mobile app provides an option to the user to lock their application account (user) if they suspect fraudulent authentication request. Once it is locked from the mobile app, any further authentication requests will not be sent to the user’s CyLock MFA app. Only an administrator can unlock an account.

    1. In the List of Registered Applications view as shown below, click “Locked Account” to navigate to Locked User List page.
      2. Viewing Locked Accounts - CyLock
    2. In the Locked User List page, click “Unlock” in the Status column corresponding to the Application User Name whose account is locked.
      3. Locked User List - CyLock

      The system displays below message to confirm unlock action.

      confirm unlock action - CyLock
    3. Click “Confirm” to unlock the user.

      4. Note: Click “Cancel” to undo any changes.

    Enabling/Disabling Application Status

    1. In the Application list view, use toggle button corresponding to the Application. The system displays “Inactive Application” popup message.
      2. Enabling/Disabling Application Status - CyLock
    2. Click “Confirm” to disable the the selected Application.

      3. Note: Click “Cancel” to exit disabling Application without saving.

    Viewing/Updating Application information

    1. In the List of Registered Applications view, click “View/Update” corresponding to the Application.
      2. Viewing/Updating Application information - CyLock

      The system displays “Application Information” page.

      Application Information - CyLock
    2. In the Application Information page, modify all parameters as needed
    3. Click “Save” to update the details of the Application.

      4. Note: Click “Back” to navigate to the List view without saving changes.

      Success portal - CyLock
    4. Click “Ok” to save changes and go to back to list view.

    Deleting Application

    1. In the Application list view, click “Delete” icon corresponding to the Application. The system displays the below confirmation message to delete the Application.
      2. Deleting Application - CyLock
    2. Click “Confirm” to remove the selected Application. The system displays below failure message, as Active users associated to the Application.
      3. Aknowledgement- CyLock

      Note:

      • Remove all active users associated with the Application before deleting it.
      • Click “Cancel” in the Delete Application popup to exit the deleting process.

    Adding Users to Application

    1. In the List of Registered Applications view, click corresponding to the Application.
      2. Adding Users to Application - CyLock

      The system navigates to Application User list page as shown below.

      Application User list page - CyLock
    2. In the List of Registered User view, click “Add New User” as shown above, to navigate to “Add Application User” page.
      3. Add New User - CyLock

      Below is the list of all required fields and corresponding details.

      • Application Name – Type of Application associated to the User, displayed by default
      • Portal Username – Select User Name to access Cylock Portal
      • Application User Name – Enter User Name to access Application

        • Note: Multiple Application Usernames can be associated to single Portal Username

      • Email – Enter Email address of the Application User for sending Notification
      • Expiry Date –Select Service End date of the Application User for this particular application, if any
      • Enable 2fa – Enabled by default, to send two factor authentication to the Application User
      • Push – Enabled by default to send push notification to the Application User
      • Contact Number 1 – Enter Primary Contact Number of Application User
      • Contact Number 2 –Enter Secondary Contact Number of Application User
      • Preferred Number – Select Contact Number 1 or Contact Number 2 of Application User for sending Notification
      • New Device Registration – Check either Biometric or PIN (Personal Identification Number) through which new device can be registered.

        • Note: Generally, PIN is recommended, as all Mobile devices might not have biometric during registration.

      • Offline Authentication – Authenticate Application User when mobile device is not online, so check anyone or all as needed.
        • CR-OTP – Challenge Response OTP – this is two factor authentication.
        • Email CR-OTP – Challenge OTP sent to Email that is used to generate Response OTP for authentication
        • SMS CR-OTP – Challenge OTP sent to SMS that is used to generate Response OTP for authentication
        • Email P-OTP – Plain OTP sent to Email used for authentication
        • SMS P-OTP – Plain OTP sent to SMS used for authentication
      • Allow User Override setting – Select to allow User to override settings done by Administrator
      • Bypass Count – Enter Number of times to bypass authentication.

        • Note:Note: Possible value for authentication bypass ranges from 0 to 99; 9999 is for permanent bypass authentication

      • Enable Geo Fencing – Select to allow geographical restrictions to access particular application
    3. Click “Save” to save all details of the Application User.
      4. Success portal- CyLock

      Administrator can perform below configurations for Application User in the Registered User List page.

      • Importing Users
      • Enabling/disabling Application User Status
      • Viewing/Updating Application User Information
      • Deleting Application User account
      • Sending QR Code to Application User for Mobile Device Registration

    Importing Users

    After selecting View Users icon Users - CyLock in the List of Registered Applications view, the system navigates to the Application User list view.

    1. In the Application User list view, click “Import User” button as shown below.
      2. Importing Users - CyLock

      The System displays the “Download/Upload Template” screen.

      Download/Upload Template - CyLock
    2. Click “Download” button to download the import Local User download template in the “Downloads” folder of the Computer.

      3. Below is the snapshot of the template file.

      Local User download template - CyLock
    3. Enter all information in the required fields and save to a destination folder.
    4. In the Download/Upload Template screen, choose the saved file from the destination folder and Click “Upload”.

      5. Note: Import is allowed for 100 user entries at a time using the template. The System displays below success message.

      success page - CyLock
    5. Click “Ok” to navigate the List page.

      6. Below snapshot shows the sample imported data.

      sample imported data - CyLock

    Enabling/Disabling User Status

    1. In the Application User list view, use toggle button corresponding to the Application User. The system displays “Inactive User” popup message.
      2. Enabling/Disabling User Status - CyLock
    2. Click “Confirm” to disable the the selected User.

      3. Note: Click “Cancel” to exit disabling User without saving.

    Viewing/Updating User Information

    1. In the Application User list view, click “View/Update” link corresponding to the Application User.
      2. Registered users screen - CyLock

      The system displays the “Edit Application User” page as below.

      Edit Application User - CyLock

    Deleting Application

    1. In the Application User list view, click “Delete” icon corresponding to the Application User. The system displays the below confirmation message to delete the Application User.
      2. Delete User Screen - CyLock
    2. Click “Confirm” to remove the selected User. The system displays below success message, as below.
      3. Success screen - CyLock

    Sending QR code to Application User

    1. In the Application User List view as shown in below figure, click “Send QR Code” icon corresponding to the Application User.
      2. Radius - QR Code - CyLock

      The System sends the QR code to the application user email address as shown in the below email sample.

      QR code- CyLock Mobile App
    2. The system displays the success message as shown below:
      3. QR code Authentication - CyLock

    Devices

    Devices allow Organization Administrator to change default device for application user, view or update registered device information and delete registered device.

    From the dashboard menu, click Devices to display the Device Dashboard on the right pane. Devices Dashboard displays metrics and List of Registered Devices as shown below.

    Devices - CyLock

    Metrics includes Total devices that are registered, Number of Android devices and Number of IOS devices.

    Registered Devices list view include below parameters

    • Application Name – Application Name to which User is associated
    • Username – Username given when User is associated to Application
    • Device – Type of mobile device used for registering Cylock MFA
    • MFA enabled – represents Cylock MFA registered in device
    • Biometric –Biometric available in mobile device
    • Hardware ID –Hardware ID if available
    • Is Default – Primary registered device used for notification/authentication
    • View/Update – View or Update the device information
    • Delete – Delete device, only if registered device is not default

    Changing default device

    1. In the Registered Devices list view, use “No” toggle button, to make one of the registered devices of an Application User, as default.
      2. Changing default device - CyLock

      The system displays the below confirmation message

      confirmation message - CyLock
    2. Click “Confirm” to make Is Default status as “Yes” corresponding to the selected device.

      3. Note: The other registered device is automatically updated as “NO” in Is default status.

      Click “Cancel” to avoid any changes made.

    Viewing/Updating Device Details

    1. In the Registered Devices list view, click “View/Update” corresponding to the registered device as shown in figure.

      2. The system navigates to the Edit Registered User details screen as below.

      Note: Except Geo Fencing, all parameters are read-only.

      Viewing/Updating Device Details - CyLock
    2. Click “+” to add Geo Fencing to navigate to Add Geo Location screen.
      3. Add Geo Location screen - CyLock
    3. Add Geo Location screen, enter address and Radius (KM) within which authentication will be allowed for the user
    4. Click “Search” to get Geographical location of the address.
      5. Geographical location - CyLock
    5. Select the Location, as appropriate.

      6. Note: If Location is inappropriate, Use “Search” option to get exact geo location.

    6. Click “Add” to update Geo-Fencing Details as shown below.
      7. Geo-Fencing Details - CyLock

      Users can also add multiple geo-fencing for each device following the above process. If user has multiple devices registered for one application user, then for each device separate geo-fencing can be added.

      In the Geo-Fencing Details, the Organization Administrator can perform below actions, if necessary.

      • Click “Active” toggle button to inactivate the corresponding location.
      • Click “View/Update” to edit Geo Location
      • Click delete icon , to delete the corresponding location.

    Deleting Devices

    1. In the Registered Devices list view, click delete icon corresponding to the registered device. The system displays User.

      2. The system displays below confirmation message.

      Deleting Devices - CyLock
    2. Click “Confirm” to remove the device from this list.

      3. The system throws failure message, if the registered device is default as below.

      Confirmation screen - CyLock

      Note: Click “Cancel” in Delete User popup, to exit the process without deleting the User account.

    Reports

    Administrator is allowed to generate different reports such as Audit History, Request Log and Login Activity Report.

    Audit History

    Generating Audit History

    1. On expanding Reports menu, click “Audit History” to display Audit History page as shown below.
      2. Generating Audit History - CyLock
    2. Select the “Audit Table” for which audit history has to be generated, from the dropdown menu that includes below options
      • Organization
      • Portal User
      • Secure Application
      • Application User
      • Device
    3. Select “From Date” and “To Date” to get report for particular time period.
    4. Click “Filter” icon to generate the Audit History Report.
      5. Audit History - CyLock
      • Click pdf - CyLock to save the search results to PDF file.
      • Click excel - CyLock to save the search results to Excel file.

      Audit Table

      Various Audit Reports can be generated based on the Audit Table selection.

      • Organization:

        • Organization Audit History displays below customizable columns that can be checked / unchecked to appear in the report.

        Organization Audit History - CyLock
      • Portal User:

        • Portal User Audit History displays below customizable columns that can be checked / unchecked to appear in the report.

        Portal User Audit History - CyLock
      • Secure Application:

        • Secure Application Audit History displays below customizable columns that can be checked / unchecked to appear in the report.

        Secure Application Audit History - CyLock
      • Application User:

        • Application User Audit History displays below customizable columns that can be checked / unchecked to appear in the report.

        Application User Audit History - CyLock
      • Device

        • Device Audit History displays below customizable columns that can be checked / unchecked to appear in the report.

        Device Audit History - CyLock

    Request Log

    Request Log page displays metrics that includes Successful Authentication, Total Request and Total Devices, and Request Response Log list.

    Request Log list includes below columns, so as to track the status of User Request

    • Username
    • Request Source
    • Request Endpoint
    • Transaction Id
    • Request time
    • Response Time
    • Request Post Parameter
    • Response Content
    • Response Code
    • Request User Agent
    1. On expanding Reports menu, click “Request Log” to display Request Log page as shown below.
      2. Request Log - CyLock
    2. Enter Username in the Search box to get particular User Information.
      3. User Information - CyLock

    Login Activity Report

    The Login Activity Report provides Login and Logout time stamp of CyLock MFA Portal application by all Users.

    Generating Login Activity Report

    1. On expanding Reports menu, click “Login Activity” to display Login Activity report as shown below.
      2. Login Activity Report - CyLock
    2. Select “From Date” and “To Date” to get Login Activity for a particular period.
    3. Click Filter to generate the Login Activity Report.
      4. Login Activity Report - CyLock
    4. Select a field in the “Search a field to search” box to refine the Search.
    5. Enter minimum 3 characters in the “Search” box to get particular User Activity report as shown below.
      6. User Activity report - CyLock
      • Click pdf - CyLock to save the search results to PDF file.
      • Click excel - CyLock to save the search results to Excel file.

    Settings

    The Organization Administrator is allowed to do critical settings to all Users across all Applications.

    Customizing User Profile Settings

    1. In the left pane of the Admin Dashboard, click “Settings” to navigate to Customer Settings page as shown below.
      2. Customizing User Profile Settings - CyLock
    2. In the Customer Settings page, make changes to the below fields as per requirements.
      3. Edit profile setting - CyLock
      Field Description Validation
      Account Limit User account limit in an Organization can be specified 1000 is set as default
      Device Limit Number of Devices allowed per User 2 is set as default
      Real Time Authentications
      • Enable 2FA
      • Push 2FA
      • PIN 2FA
      • Biometric 2FA
      • Enable 2FA and Push 2FA are read-only
      • Select PIN 2FA and Biometric 2FA so as to make available for device registration.
      Offline Authentications
      • CR-OTP
      • Email CR-OTP
      • SMS CR-OTP
      • Email P-OTP
      • SMS P-OTP
      		 Select offline authentications so as to make available for User preferences
      Other Features
      • Fraud Alert
      • Enable Geo-Fencing
      • Allow End-User login
      		 Select other features as desired
    3. Click “Update” to save all changes

      4. Note: Click “Back” to navigate to Homepage Dashboard.

    Annexure 1

    Application User can perform below tasks

    Installing CyLock MFA application in mobile device

    1. Install CyLock MFA apk to mobile device of the Application User from Google Play store.
    2. After installation CyLock MFA app displays as below.
      3. CyLock MFA app

    Registering Mobile device for authenticating Applications

    1. Clicking the CyLock MFA application in the mobile device, the app opens as shown below.
      2. - CyLock MFA application - mobile
    2. Click “Add User” icon to initialize the camera.
    3. Scan the QR code in the registered email of the Application User.
    4. Device adds the Application as shown below.
      5. Application - CyLock

      Device displays “Set PIN for Account” as below.

      Set PIN for Account - CyLock
    5. Enter “PIN” of 6 digit Numbers.
    6. Enter “Retype PIN” same as “PIN”.
    7. Click “Finish” to complete registration.

      8. What happens after registration? We have to show the screen and options available in that.

    Accessing Application using various authentication

    Application can be accessed through SSL-VPN using below authentication options

    • Push Notification
    • Email CR OTP
    • Email Plain OTP

    Accessing Application using Push Notification

    1. After opening FortiClient, click “Remote Access” to display the login screen.
      2. Accessing Application using Push Notification - CyLock
    2. Click gear icon, to navigate to New VPN connection screen.
      3. New VPN connection screen - CyLock
    3. Enter all details as required.
    4. Click “Save” all details.

      5. FortiClient navigates to Remote Access login Screen with VPN name and Username displayed by default

    5. Enter Password as followed by “,1”

      6. The system sends Push Notification to the mobile device as below.

      Push Notification to the mobile device - CyLock
    6. Touch the notification to navigate to authentication screen as below.
      7. authentication screen - CyLock
    7. Enter PIN and select “Accept” to establish SSL-VPN connection.

      8. Note: Swipe “Suspect Unusual Activity” to select “Reject” or “Reject and block” option, if suspect fraudulent action.

    Accessing Application using Email CR OTP

    1. In the Remote Access login screen of FortiClient as in figure below, enter Password as followed by “,2”.

      2. The system sends CR OTP to registered Email id as below sample screenshot.

      CR OTP email - CyLock
    2. In the Mobile device, click the Application name, to display GET OTP, DELETE and CHANGE PIN options as shown below.
      3. display screen - CyLock
    3. Click “GET OTP” to navigate to Get OTP screen as shown below.
      4. GET OTP - CyLock
    4. Enter CR OTP sent to email, in Enter Code.
    5. Click “ENTER PIN” to type pin set during registration as shown below.
      6. ENTER PIN - CyLock
    6. After PIN validation, click GET OTP to generate “Response OTP” as shown below..
      7. Response OTP - CyLock
    7. Enter Response OTP from device to “Answer” textbox in Forticlient.
      8. Response OTP - CyLock
    8. Click “Ok” to establish VPN Connection.

    Accessing Application using Email Plain OTP

    1. In the Remote Access login screen of FortiClient as in figure below, enter Password as password followed by “,3”.

      2. The system sends Plain OTP to registered Email id as below sample screenshot.

      Accessing Application using Email Plain OTP - CyLock
    2. Enter Plain OTP from Email to “Answer” textbox in Forticlient.
      3. Plain OTP from Email - CyLock

      Click “Ok” to establish VPN Connection.

    Shape Shape

    Use The Best Product to Protect your Application

    Start Free Trial