Configuring Threat Management Console

The Threat Management Console Manage page provides a way for you, acting as the administrator, to configure privacy and VPN settings for the environment, as well as a view to the audit logs that collect all activity on the active devices.

General settings

The Manage > General tab provides basic information about the environment and an alternate location for modifying the selected language. It also provides the option to change the administrator password.

Figure 14. Threat Management Console > Manage > General tab

Here are specific configuration elements for the General tab:

Table 8. General tab settings

Section

Description and actions

Company Information

Enter your company information, including a contact email. Your plan type and activation date are populated automatically.

Logged in user

Enter the name, email address, system role, and password for the current user. Click Change password to open the Set Password menu. Click Save to retain your changes.

Set Password Policy

  1. Click Set Password Policy to open the password policy menu.

  2. Define the password requirements for Threat Management Console users:

    • Minimum password length
    • Required password elements
    • Maximum repeating characters
    • Verify that the new password was not used in the past “n” passwords
    • Define how often the password must be changed
    • Define how many failed attempts prior to triggering an account lock
    • Define the account lock out time in minutes
  3. Click Save to retain your changes.

Preferred Language

Choose the language for the Threat Management Console. The current options are English, Japanese or Hebrew. Click Save to retain your changes.

Options for zIPS with root access

This feature is not supported for MTD clients.

Danger Zone

When this option is enabled, it alerts the user that they have connected to a Wi-Fi network that is in the Danger Zone database of possibly malicious websites. This option is disabled by default. Click Save to retain your changes.

Device Inactivity Configuration

This configuration controls how long the system waits before determining that a device is dormant:

  1. Allowed Inactivity Time: The maximum time a device can be inactive before the device is entered into the warning timer, aka Grace Period. Enter a valid number in the left box, and choose Seconds, Minutes, or Hours in the right box.

  2. Warning Interval (Grace Period): After the device exceeds the Allowed Inactivity Timer, it enters the grace period where it receives a warning. If more than one warning is required, enter a valid number in the left box to configure the interval between warnings, and choose Seconds, Minutes, or Hours in the right box.

  3. Max Warnings: The number of warnings that can be sent to the device in the grace period. An entry of ‘0’ disables the grace period.

  4. All Android devices use AFW/Enterprise: Click this box if all of your Android devices use Android Enterprise (AE) or AE Work Profile mode. When enabled, it triggers a threat event if either of the client profiles (work or personal) exceeds the Allowed Inactivity Time.

Click Save to retain your changes.