Configure Login URL Protection

HID_Enable_SSO_Spoofing_Protection
You can secure your system and require users to log in using only authorized URLs by enabling Single Sign-On spoofing protection using
NetOps Portal
or using the Single Sign-On Configuration (SSOConfig) tool.
You can also enable Single Sign-On spoofing protection using the Single Sign-On Configuration (SSOConfig) tool. This article details how to enable Single Sign-On spoofing protection using
NetOps Portal
.
For more information about how to enable Single Sign-On spoofing protection using SSOConfig, see Configure the DX NetOps Security Settings Using the SSO Configuration Tool.
Follow these steps:
  1. Best Practice:
    Access
    NetOps Portal
    using the URLs that you intend to use (so that they display in the list of available URLs).
  2. Log in as a user with administrative role rights.
  3. Hover over
    Administration
    ,
    Configuration Settings
    , and then click
    Security Settings
    .
    The
    Security Settings
    page appears.
  4. In the
    Login URL Protection
    section, enable Single Sign-On spoofing protection by selecting
    Enable SSO URL Protection
    .
    Options:
    • Enabled
      Users can log in using only authorized URLs, but cannot log in from the
      Log In
      screen (by clicking
      Log In
      ). Users attempting to log in using an unauthorized URL receive the following error:
      Log in URL not recognized. Log in is disabled.
    • Disabled
      Users receive only a warning regarding suspicious URLs.
    The guidelines require that you enable this setting.
    Default:
    Disabled
  5. For
    Select Authorized URLs
    , add the URLs that users can use (authorized URLs) from the list of available URLs.
    NetOps Portal
    populates the list of available authorized URLs with the URLs that you use to access
    NetOps Portal
    .
  6. Click
    Save
    .
Your system is secured and users are required to log in using only authorized URLs.