Chapter 5: Pulse Administration & User Management
There are two types of Pulse user accounts – Admin and Tester. These roles have the following permissions:
|View Threats & Alerts||✔||✔|
|View Asset Data||✔||✔|
|Export CSV Data||✔||✔|
|View Risk Scorecard||✔||✔|
|View Daily Reports||✔||✔|
|Manage Sensor Services||✔||✔|
|Reset Two Factor Authentication||✔|
|Approve New Sensors||✔|
|Create / Edit Scripts||✔|
|View User Audit Logs||✔|
|Set Access Point Policies||✔||✖|
|Manage Threat Severity||✔||✖|
Creating New Users
To create a new user, as an Admin, select Tools > Users, and then click Invite User. Select a role for the new user (Admin or Tester), enter First & Last Name and an email address. An invitation to establish credentials is automatically sent to the specified email address. The email address entered will be the Username for login, and is case sensitive.
The invitation has a 72-hour expiration. Until the user accepts it, you can revoke the invitation by clicking Revoke. If the invitation expires, the user can resend it by clicking Resend.
A user can reset their own password (for example, if forgotten) by clicking Forgot Password on the login screen and entering their account email address. A message is sent with a link to reset the password.
While logged in, a user can access their profile to change their password by clicking the Welcome, Username link on the upper toolbar. Under Your Profile, a user must enter their current password, and then enter the new password twice.
Two-factor authentication, using the Google Authenticator application can be enabled for all user accounts. This is requested during the Pulse on-boarding process by selecting the Two-Factor option when submitting the Launch Guide:
For customers that already have an existing Pulse account, please send an email to firstname.lastname@example.org to request Two-Factor Authentication to be enabled.
Once two-factor authentication has been enabled, it will need to be configured on a per user account basis.
To set up two-factor authentication for a user
- Open a browser session to Pulse.
- Click the Not Registered? button located to the right of the Two-Factor Authentication heading.
- Input the username and password for the account. Upon successful authentication, follow the onscreen instructions for adding a new token to the Google Authenticator App.
Note: For help with installing and using the Google Authenticator App on your mobile device, please see:
Once two-factor authentication has been confirmed for a user account, it will be required to be used to login.
To reset two-factor authentication for a user
In the event a user loses access to their Google Authenticator App, individual user account’s two-factor authentication can be reset by an Admin User as follows:
- Login to Pulse as an Admin User.
- Click the Tools drop down menu in the upper right corner and select Users.
- From the list of users, locate the account that needs whose two-factor needs to be reset and click the Reset Two-factor button.
The user will then need to go through the process outlined above for setting up a new two-factor token on their mobile device.
By default, Pulse reports in UTC Time Zone. To change this, go to the Your Profile page by clicking the Welcome, Username link on the upper toolbar. Select a new time zone from the drop-down list.
User accountability is ensured using user Audits. User actions are logged and available for view under the Tools menu through the Audits tab.