Manage Organization Settings
A superuser can configure the organization settings and do the following tasks:
-
View organization name and organization ID and modify the organization name.
-
Add, modify, and delete identity providers (IdP).
-
Add, modify, and delete custom roles.
-
Enable or disable the password policy for the organization and modify the password policy when the password policy is enabled.
-
Modify the session timeout policy for the organization.
-
Generate, edit, and delete API tokens for various roles in the organization.
-
Configure webhooks for the organization.
-
Configure device authentication
To configure and to manage organization settings:
-
Click Settings Menu > System Settings on the banner.
The Organization Settings page appears.
-
Configure or modify the organization settings as needed. Refer to Table 1.
-
Click Save to save the settings.
Verify that the settings are saved and close the Organization Settings page.
Table 1 describes the parameters on the Organization Settings page.
Field | Description |
---|---|
Organization Name |
Name of the organization. You can edit the organization name here. |
Organization ID |
The ID for the organization. The value is auto-generated. This is a read-only field. |
Single Sign On (SSO) |
|
Identity Providers |
View identity providers configured in the organization. Add, edit, or delete the identity providers; see Manage Identity Providers. |
Roles |
View roles configured for SSO. Add, edit, or delete the roles; see Manage Roles. |
Password Policy |
Enable or disable (default) password policy. If you enable the password policy, configure the password policy parameters; see Table 2. |
Session Policy |
Configure the time, in minutes, after which the session with Paragon Automation should timeout; see Table 3. |
API Tokens |
Generate and view API tokens to authenticate users when they retrieve data by using REST APIs; see Manage API Tokens. |
Webhooks |
Webhooks enable you to get notifications when the events that you have subscribed for occur. Internet connectivity is required for Paragon Automation to connect to third-party applications, such as Slack. Click to enable or disable (default) webhooks. If you enable webhooks, you must select the type of events for which you want to receive notifications; see Table 4. |
Device Authentication |
Configure the type of authentication Paragon Automation must use to onboard a device—Local (default) or RADIUS. See Manage RADIUS Server Configurations to configure RADIUS authentication. |
Field | Description |
---|---|
Required minimum password length |
Enter the minimum number of characters that should be present in the password of a user's account. Default is 8 characters. Range: 8 to 32 |
Require special characters | Click to enable (default) or disable the use of special characters in the password. |
Require 2-Factor Authentication |
Click to enable or disable (default) two-factor authentication for users accessing the organization. If you enable two-factor authentication, a code is sent to an authenticator app. The code should be entered in addition to the password to access the organization. |
Field | Description |
---|---|
Session Timeout (minutes) | Enter the number of minutes after which the session should timeout. Default is 20,160 minutes. |
Inactivity Timeout (minutes) | Enter the number of inactive minutes after which the session should
timeout. Default is 0, indicating that the session does not time out
because of inactivity. Range: 0 to 480 minutes |
Field | Description |
---|---|
Name | Enter the name of the server or application to which notifications for subscribed events are to be sent. |
URL |
Enter the URL of the server or application where the notifications in the form of HTTP POST requests are to be sent when a subscribed event occurs. You must configure webhooks to enable Paragon Automation to send notifications to third-party applications, such as Slack, when events you have subscribed to are triggered on the managed devices. To receive webhook notifications in a format that is compatible with Slack, you need to configure an intermediary that can interact with the sending and receiving applications, in this case, Paragon Automation and Slack. The recommended intermediary platform is Make. For more information, see Configure Webhooks to Receive Event Notifications. |
Secret | Enter the secret to validate that the notifications received are from valid hosts. |
Webhook Header | |
Header Key | Enter a unique key that the webhook endpoint can use to authenticate the event notifications. |
Header Value | Enter a unique value for the key. |
Streaming API | |
Alerts | Click to enable or disable (default) receiving notifications when subscribed alerts are generated on the managed devices. |
Audits | Click to enable or disable (default) receiving notifications when an organization is accessed or any setting in the organization is changed. |
Device Status | Click to enable or disable (default) receiving notifications when the device status changes due to events such as a link going up or down, or the device getting disconnected from Paragon Automation, and so on. |
Device Alarms |
Click to enable or disable (default) receiving notifications when subscribed alarms are generated on the managed devices. |