- play_arrow Introduction
- play_arrow Overview
- play_arrow Access and Manage Paragon Automation Account
-
- play_arrow Device Life Cycle Management
- play_arrow Introduction
- play_arrow Day-Wise Activities for Device Life Cycle Management
- play_arrow Field Technician User Interface
- play_arrow Onboarding Profiles
- play_arrow Plan Device Onboarding
- Network Implementation Plan Overview
- About the Network Implementation Plan Page
- Allocate a Device as a Resource
- Add Network Resource Pools
- Add a Network Implementation Plan
- Publish a Network Implementation Plan
- Offboard a Network Implementation Plan
- Edit a Network Implementation Plan
- Update the Network Implementation Plan and Recreate Service Instances After Upgrade
- View Network Resources
- play_arrow View Device Onboarding
- About the Onboarding Dashboard
- Move a Device to Production
- View Results of Automated Device Tests
- Identity and Location Data of a Device
- Remote Management Data and Test Results
- Hardware Data and Test Results
- Interfaces Data and Test Results
- Software Data and Test Results
- Configuration Data and Test Results
- Routing Data and Test Results
- Device Connectivity Data and Tests Results
- play_arrow Device Management
- Device Management Workflow
- Device Licenses Overview
- About the Features Tab
- About the Licenses Tab
- Manage Device Licenses
- About the Software Images Page
- Upload a Software Image
- Delete a Software Image
- About the Configuration Backups Page
- Configuration Templates Overview
- About the Configuration Templates Page
- Add a Configuration Template
- Edit and Delete a Configuration Template
- Preview a Configuration Template
- Deploy a Configuration Template to a Device
-
- play_arrow Observability
- play_arrow Introduction
- play_arrow Health Dashboard
- play_arrow Troubleshoot Devices
- play_arrow View Network Topology
- Network Topology Visualization Overview
- Network Visualization Options
- View Network Topology Details
- Network Table Overview
- About the Device Tab
- About the Link Tab
- About the Site Tab
- About the Tunnels Tab
- Dynamic Topology Workflow
- Configure a PCE Server
- Configuring PCEP on a PE Router
- Configuring Topology Acquisition Using BGP-LS
-
- play_arrow Trust and Compliance
- play_arrow Introduction
- play_arrow Manage Trust Settings and Trust Scores
- Compliance Standards Overview
- About the Compliance Benchmarks Page
- About the Compliance Tailorings Page
- Example: Create a Tailoring Document for NTP Settings
- About the Compliance Checklist Page
- Add a Checklist Template
- Add Checklist for a Device
- Import Scans and Update Rule Results in a Checklist
- Trust Plans Overview
- About the Network Score Formula Page
- Trust Score Overview
- About the Network Score Page
- About the Snapshots Page
- Add a Snapshot for a Target
- play_arrow Manage Compliance Scans
- play_arrow Manage Vulnerabilities
- play_arrow Monitor Integrity
-
- play_arrow Service Orchestration
- play_arrow Introduction
- play_arrow View Service Design Catalog
- play_arrow Manage Customers
- play_arrow Add Resources for Network Services
- play_arrow Manage Service Instances
- Service Instance Overview
- About the Service Instances Page
- View Service Instance Details
- View Passive Assurance Monitoring Data
- View EVPN Passive Assurance Monitoring Results
- View L2 Circuit Passive Assurance Monitoring Data
- View L3VPN Passive Assurance Monitoring Results
- Physical Interfaces Health Check Results
- Logical Interfaces Health Check Results
- Performance Graphs to View Passive Assurance Monitoring Data
- play_arrow Provision VPN Services
- play_arrow Monitor Service Order Execution Workflows
-
- play_arrow Active Assurance
- play_arrow Introduction
- play_arrow Test Agents
- play_arrow Tests and Monitors
- play_arrow Test Templates
-
- play_arrow Paragon Shell CLI Reference
- play_arrow Introduction
- play_arrow Operational Mode Commands
- file copy
- monitor
- request paragon backup
- request paragon cluster pods reset
- request paragon cluster upgrade
- request paragon config
- request paragon deploy
- request paragon deploy cluster
- request paragon destroy cluster
- request paragon fix-permission
- request paragon load
- request paragon repair-node
- request paragon replace-node
- request paragon restore
- request paragon running-config
- request paragon ssh
- request paragon ssh-key
- request paragon storage cleanup
- request paragon super-user password reset
- request system decrypt password
- request system reboot
- show configuration paragon cluster
- show configuration paragon cluster applications (o)
- show configuration paragon cluster common-services (o)
- show host disk usage
- show paragon backup
- show paragon certificate expiry-date certificate-type
- show paragon cluster (o)
- show paragon cluster details
- show paragon cluster namespaces
- show paragon cluster nodes
- show paragon cluster pods
- show paragon cluster pods namespace healthbot sort
- show paragon images version
- show paragon images version namespace
- show paragon pvc details
- show paragon version
- play_arrow Configuration Mode Commands
- delete paragon cluster
- load set
- set paragon cluster applications
- set paragon cluster common-services ingress
- set paragon cluster insights victoria-metrics
- set paragon cluster install
- set paragon cluster kubernetes
- set paragon cluster mail-server
- set paragon cluster nodes
- set paragon cluster ntp
- set paragon cluster papi
- set paragon monitoring
- set system login
- show paragon cluster (c)
- show paragon cluster applications (c)
- show paragon cluster common-services ingress (c)
- play_arrow Troubleshooting Commands
- Troubleshoot Using the Paragon Shell CLI Commands
- request paragon support information
- request paragon troubleshooting information
- request paragon debug
- request paragon debug get-tsdb-data
- request paragon debug insights-kafka-data
- request paragon debug kafka
- request paragon debug logs
- request paragon debug logs namespace
- request paragon debug postgres
- request paragon debug redis
- play_arrow Service Orchestration
- About the Service Orchestration cMGD CLI
- set foghorn:core org-id
- set service design default version
- set dag state failed
- show service order status
- show service order as-json
- show service order as-yaml
- show service designs
- show device dependent configuration
- show insights configuration
- show configuration foghorn:customers
- show service instance lock status
- show service instance lock token
- show service projects
- show service order history
- show airflow dags
- show airflow dag-runs
- show paragon orgs
- request service project add
- request service order sync
- request network resources load
- request service order load
- request service order place
- request service order modify
- request service order delete
- request service order submit
- request service order provision
- request service design install
- request service design uninstall
- request create graphdb
- request service order set
- request service instance lock
- request service instance unlock
-
Manage Organization Settings
A superuser can configure the organization settings and do the following tasks:
View organization name and organization ID and modify the organization name.
Add, modify, and delete identity providers (IdP).
Add, modify, and delete custom roles.
Enable or disable the password policy for the organization and modify the password policy when the password policy is enabled.
Modify the session timeout policy for the organization.
Generate, edit, and delete API tokens for various roles in the organization.
Configure webhooks for the organization.
Configure device authentication
To configure and to manage organization settings:
Click Settings Menu > System Settings on the banner.
The Organization Settings page appears.
Configure or modify the organization settings as needed. Refer to Table 1.
Click Save to save the settings.
Verify that the settings are saved and close the Organization Settings page.
Table 1 describes the parameters on the Organization Settings page.
| Field | Description |
|---|---|
Organization Name | Name of the organization. You can edit the organization name here. |
Organization ID | The ID for the organization. The value is auto-generated. This is a read-only field. |
Single Sign On (SSO) | |
Identity Providers | View identity providers configured in the organization. Add, edit, or delete the identity providers; see Manage Identity Providers. |
Roles | View roles configured for SSO. Add, edit, or delete the roles; see Manage Roles. |
Password Policy | Enable or disable (default) password policy. If you enable the password policy, configure the password policy parameters; see Table 2. |
Session Policy | Configure the time, in minutes, after which the session with Paragon Automation should timeout; see Table 3. |
API Tokens | Generate and view API tokens to authenticate users when they retrieve data by using REST APIs; see Manage API Tokens. |
Webhooks | Webhooks enable you to get notifications when the events that you have subscribed for occur. Internet connectivity is required for Paragon Automation to connect to third-party applications, such as Slack. Click to enable or disable (default) webhooks. If you enable webhooks, you must select the type of events for which you want to receive notifications; see Table 4. |
Device Authentication | Configure the type of authentication Paragon Automation must use to onboard a device—Local (default) or RADIUS. See Manage RADIUS Server Configurations to configure RADIUS authentication. |
| Field | Description |
|---|---|
| Required minimum password length | Enter the minimum number of characters that should be present in the password of a user's account. Default is 8 characters. Range: 8 to 32 |
| Require special characters | Click to enable (default) or disable the use of special characters in the password. |
| Require 2-Factor Authentication | Click to enable or disable (default) two-factor authentication for users accessing the organization. If you enable two-factor authentication, a code is sent to an authenticator app. The code should be entered in addition to the password to access the organization. |
| Field | Description |
|---|---|
| Session Timeout (minutes) | Enter the number of minutes after which the session should timeout. Default is 20,160 minutes. |
| Inactivity Timeout (minutes) | Enter the number of inactive minutes after which the session should
timeout. Default is 0, indicating that the session does not time out
because of inactivity. Range: 0 to 480 minutes |
| Field | Description |
|---|---|
| Name | Enter the name of the server or application to which notifications for subscribed events are to be sent. |
| URL | Enter the URL of the server or application where the notifications in the form of HTTP POST requests are to be sent when a subscribed event occurs. You must configure webhooks to enable Paragon Automation to send notifications to third-party applications, such as Slack, when events you have subscribed to are triggered on the managed devices. To receive webhook notifications in a format that is compatible with Slack, you need to configure an intermediary that can interact with the sending and receiving applications, in this case, Paragon Automation and Slack. The recommended intermediary platform is Make. For more information, see Configure Webhooks to Receive Event Notifications. |
| Secret | Enter the secret to validate that the notifications received are from valid hosts. |
| Webhook Header | |
| Header Key | Enter a unique key that the webhook endpoint can use to authenticate the event notifications. |
| Header Value | Enter a unique value for the key. |
| Streaming API | |
| Alerts | Click to enable or disable (default) receiving notifications when subscribed alerts are generated on the managed devices. |
| Audits | Click to enable or disable (default) receiving notifications when an organization is accessed or any setting in the organization is changed. |
| Device Status | Click to enable or disable (default) receiving notifications when the device status changes due to events such as a link going up or down, or the device getting disconnected from Paragon Automation, and so on. |
| Device Alarms | Click to enable or disable (default) receiving notifications when subscribed alarms are generated on the managed devices. |
