Enhanced Agent Web Console (AWC) security features are designed to allow users with access to more than one AWC instance, such as Account Managers, to employ Multifactor Authentication (MFA) restrictions and/or IP and Region Login Whitelist restrictions. These restrictions are defined by the user’s Default Account.
MFA is an optional security feature in the AWC that uses third-party provider Duo. Once a Duo account is created and the AWC is configured by an Admin user, the specific user must sign in with both their username and password. The user then receives a prompt to use the Duo app on their mobile device. The user only has access to the AWC after both authentication methods are employed.
MFA restrictions are inherited by your default account in the AWC. However, if you are an Account Manager and can access more than one AWC account, you can change from one account to another as long as your session hasn't timed out.
IP and Region Login Whitelisting is an optional security feature in the AWC. Once enabled and configured, users can only sign in if their IP address matches the one set up in the AWC or if their IP matches the configured IP address range for their country.
This is configurable for the Default Merchant Account and restricts valid logins to:
-
Individual IP addresses
-
IP address ranges
-
IP addresses by country
IP Address Whitelists are intended for use by Account Managers who are signed into partner merchants. When an Account Manager signs in, they are identified so that the AWC authentication system checks the appropriate white label list.
IP whitelist restrictions are inherited by the merchant's default account in the AWC. But an Account Manager can access more than one AWC account. Once signed in, the manager can change from one account to another as long as the current session has not timed out.
Read more:
Introduction to IP and Region Login Whitelists
Comments
0 comments
Please sign in to leave a comment.