Managing user lockout

An Administrator can lock any other user's account. Once the reasons for the Administrator-initiated lockout have been addressed, an Administrator can unlock the account.

When an account is locked, the application resets the password expiration date and terminates the user's current session. Once the account is unlocked, the password expiration date remains reset. Therefore, after unlocking, the user needs to set a new password.

After unlocking a user account, we recommend immediately setting a new password to prevent malicious actors from guessing the old password and hijacking the unlocked account. An Administrator can either set a new password or supervise the password change at the user's computer.

An Administrator can lock or unlock accounts created in the application only. These actions are not available to Kaspersky Security Center user accounts configured for Single Sign-On (SSO).

To lock a user account:

1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
2. Select Settings → Users.
3. Select the user you want to lock.

   The details area appears in the right part of the web interface window.

4. Click Block.

   A window with a confirmation prompt opens.

5. In the prompt window, click OK.

To unlock a user previously locked by an Administrator:

1. Connect to the Kaspersky Industrial CyberSecurity for Networks Server through the web interface using the Administrator account.
2. Select Settings → Users.
3. Select the user you want to unlock.

   The details area appears in the right part of the web interface window.

4. Click Unblock.

   A window with a confirmation prompt opens.

5. In the prompt window, click OK.

Page top