Jump to content

Archived

This topic is now archived and is closed to further replies.

jinlei801011

Questions on ESA with office 365

Recommended Posts

Dear ESET,

My customer is interesting in ESA to protect their office 365 and fortigate VPN, I have few questions need your advise

Office 365

1. Can OTP only required for external access (Out of office)?

2. Can we import user phone number into AD instead of enter manually?

3. Can ESA able to track log activities ( who, when) sign on portal?

4. Can we set policies to log out users after certain unsuccessful tries. 

5. API to SIEM

 

Thanks

Share this post


Link to post
Share on other sites

Hi there

 

1. We have a feature called IP range whitelisting where you can define IP ranges from which second factor is not required (see product guide for more details)

2. Importing phone numbers is up to the AD capabilities. ESA just utilized the AD functionality. I presume, AD has an option to import data in bulk.

3.We internal product logging for (product logs) some of the user login activities. But there is not a dedicated UI for accessing such information. Also administrator can find last successful login and last failed login per each user in the AD tab of dedicated user (see attached screenshot).

4. Not sure if I understand. ESA has a security mechanism to lock user after certain amount of unsuccessful login attempts. ESA does not have a capability to set policies.

5. ESA has an API. please find details in product  documentation.

User guide

API guide

 

regards

 

vladimir

 

10-Jul-17 4-58-02 PM.jpg

Share this post


Link to post
Share on other sites
17 hours ago, VladimirVladimir said:

Hi there

 

1. We have a feature called IP range whitelisting where you can define IP ranges from which second factor is not required (see product guide for more details)

2. Importing phone numbers is up to the AD capabilities. ESA just utilized the AD functionality. I presume, AD has an option to import data in bulk.

3.We internal product logging for (product logs) some of the user login activities. But there is not a dedicated UI for accessing such information. Also administrator can find last successful login and last failed login per each user in the AD tab of dedicated user (see attached screenshot).

4. Not sure if I understand. ESA has a security mechanism to lock user after certain amount of unsuccessful login attempts. ESA does not have a capability to set policies.

5. ESA has an API. please find details in product  documentation.

User guide

API guide

 

regards

 

vladimir

 

10-Jul-17 4-58-02 PM.jpg

Hi Vadimir,

Thanks. For SIEM, I mean can we integrate ESA in SIEM (Security Information & Event Management)?

 

Regards,

Share this post


Link to post
Share on other sites

Hi 

regarding the SIEM. We do not have any plugins/APIs for such products. 

But we are happy to hear any details regarding such requirement. 

  • Which specific SIEM tools are you interested in?
  • what would you like to manage/configure/monitor from such tool?
  • do you prefer a dedicated API, or also specific plugins are required?

Thanks

regards

 

v.

Share this post


Link to post
Share on other sites

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...