Cloud User authentication - x360Recover

Written By Tami Sutcliffe (Super Administrator)

Updated at December 5th, 2024

Overview

x360Recover version 14.3.0 and newer now supports login to appliances and vaults using Cloud Org-User accounts from x360Portal and Recover Manager.

What does this mean for you?

  • Rather than relying on individually managed local device user accounts, you can now log in globally, using centrally managed Org User accounts created in Recover Manager or x360Portal.
  • Cloud Users have mandatory Multi-Factor Authentication requirements, making them more secure than local accounts.
  • Using Cloud User accounts means that you no longer need to share local Admin user credentials with your support members, and each user will have their own unique login identity.
  • All user actions taken within the UI will be logged under the logged-in user, making it possible to audit which user logged in, when, and what actions they performed.

Cloud User authentication and lockdown mode

Lockdown mode was implemented some time ago to meet partner requirements surrounding MFA login and cyber security auditing. 

  • When lockdown mode is enabled, local user accounts (which don’t support MFA) are locked out and users may not log in locally to the device. 
  • Secure access with MFA was achieved via SSO (Single-Sign-On) connectivity to the device via Recover Manager. This solution was not always applicable, and partners sometimes were forced to disable lockdown mode when they needed to log in directly to a device.

With Cloud User authentication, MFA is supported, so log in to devices using Cloud User credentials is always available -  even when lockdown mode is enabled.

How does it work?

1. A new dialog page is now displayed when connecting to the appliance or vault -  before the Login page is presented. 

This new dialog page includes identifying information about the device, along with selection buttons for choosing between Local User Login and Cloud User Login:

2. Selecting Local User Login presents the classic local user login screen:

3. Alternatively, selecting Cloud User Login will redirect you to the x360Portal User login page. 

After completing log in by entering the username, password, and MFA code, you will be redirected back to the device and logged in.

Cloud User Login with Lockdown Mode

When Lockdown Mode is enabled, local logins are disabled, but Cloud User logins are still permitted.

On the device landing page, the Local Login button will be hidden and only Cloud User Login will be available. 

This provides both the convenience of allowing local device logins with full MFA validation, while also securing the device against less secure local device user logins.




SUPPORT | 720-204-4500 | 800-352-0248

 

1943