View Source

Access Control by User or User Group allows you to restrict access to applications by some individual users or a specific user group.

Access Control by User is implemented by creating some appropriate Access Control policies. In this guide, we will describe how to implement an access control system so that all users in a domain are denied access to the DualShield Service Console (DSC) except users in the group called DualShield 2FA.

We need to create the following 2 Access Control policies:

Domain Policy: An Access Control policy bound to the 'deepnetid.com' domain and the 'self-service console' application. All users in the domain are denied access to the application.
Group Policy: An Access Control policy bound to the 'DualShield 2FA' user group and the 'self-service console' application. All users in the user group are allowed access to the application.

DualShield MFA Platform > Access Control by User or Group > image2022-6-26_18-17-54.png

Domain Policy

DualShield MFA Platform > Access Control by User or Group > image2022-6-26_18-19-59.png

Group Policy

DualShield MFA Platform > Access Control by User or Group > image2022-6-26_18-22-53.png