Authentication policies

You can configure authentication policies for Kaspersky Anti Targeted Attack Platform users. These policies apply to all Kaspersky Anti Targeted Attack Platform users with the KATA user account account type regardless of their assigned role.

Enforced password change after the first successful authentication

If this functionality is enabled, passwords are changed in accordance with the following scenario:

1. The administrator creates a user account.
2. The user authenticates in the Kaspersky Anti Targeted Attack Platform web interface.
3. If the user has not changed their password before this feature was enabled, the application prompts the user to change the account password at the next logon to the web interface. The old password becomes invalid.

The first login of the user to the main web interface of the application is counted as the first authentication. No password change prompt is displayed if the user comes back and logs in to the web interface for sizing management or the administrator menu of the application. Neither is a password change prompt displayed if the user account is used for connecting the SCN to the PCN.

Regular password change

If regular password change is enabled, the application prompts the user to change the password after the period set by the administrator expires. The countdown starts from the moment when the account password is changed and is tracked individually for each user.

Terminate inactive sessions

If the user is not doing anything (the session is idle), we recommend terminating such a session. This reduces the risk of unauthorized access to Kaspersky Anti Targeted Attack Platform in cases when the user is actually done working with the application, but did not end the session.

Notifications about failed authentication attempts

Frequent failed attempts to log in to the web interface or the management console may indicate that a cybercriminal is trying to gain access to Kaspersky Anti Targeted Attack Platform by brute-forcing the password. To prevent such unauthorized access, we recommend to enabling notifications about the failed authentication attempt limit being exceeded.

Distributed solution and multitenancy mode

In distributed solution and multitenancy mode, authentication policy settings specified on the PCN are applied to the SCNs.

In this section Enforced password change after the first successful authentication Enforced regular password change Terminate inactive sessions Notifications about failed authentication attempts

Page top