U19 Pop-Out Help

Page tree

Versions Compared

Old Version 9

changes.mady.by.user Patricia Parkhill

Saved on

compared with

New Version 10

changes.mady.by.user Sarala Prakash

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Expand
titleSecurity

Centralized control over security configuration options for both LiveVox Portal (LVP) users and agents.

Single Sign On

LiveVox platform allows login to LiveVox Products via 3rd party Identity Providers (supports Okta).Using SSO administrative settings, permitted users can easily configure and manage Identity Provider settings.

  • Enable Single Sign On: Click on the slider to enable or disable the Single Sign On functionality.

    Info
    • Once you have user/agent set up with valid emails, you can enable SSO.
    • Email Attribute is case-sensitive.
    • Emails sent must match exactly what is in the user or agent email field.


  • Authentication Standard: Login standard to use for single sign on. Available options are as below:
    • SAML: SAML is an acronym of the Security Assertion Markup Language (SAML). This is the default option.
      • Url where you can get the SAML Metadata: Add the link of SAML metadata file and click the green arrow. This auto-populates the Single Sign On URL, Issuer URL and Certificate X.509 fields.
      • Single Sign On URL: The location where Livevox will hit to initiate the authentication process.
      • Issuer URL: It is also known as entity ID. It is used to validate the assertion.
      • Certificate X.509:  SAML uses an certificate to verify signed assertions.

      • Need Help?: Click on the See Instructions link. In this new window you will find the required information to fill in at your IDP configuration setup. 

        Info

        You need to add sign in URLs for the User and Agent.


    • OIDC: OIDC is an acronym of the OpenID Connect.
      • Authorization ID: An authorization ID is an identifier that represents a set of privileges.
      • Authorization Secret: An Authorization secret is a secret known only to your application and the authorization server.

      • Isuer URL: It is also known as entity ID. It is used to validate the assertion.

        Info

        Your IDP provides the info about Authorization ID (Client Id) and Authorization Secret (Client secret).


      • Need Help?: Click on the See Instructions link. In this new window you will find the required information to fill in at your IdP configuration setup. 

General

  • Password Expire Days - Sets the number of days for the password expiration. Applies to both users and agents.
Note
iconfalse

When implementing a password expire period for the first time, or reducing the number of days in the current period, all agents should be logged out to prevent any call interruption due to password expiration. In addition, if your portal uses any LiveVox Custom Applications (Scripter, for example) or you are unsure if you have integrated these types of apps, reach out to your Account Management team before adding, removing or making any changes to the Password Expire Period, because this can interrupt any active LiveVox Custom Applications. 

  • Max Failed Login Attempts LVP - Sets : Sets the number of password attempts after which the user is locked out
  • Max Failed Login Attempts Agent - Sets : Sets the number of password attempts after which the agent is locked out
Note
iconfalse

The value of Max Failed Login Attempts LVP and Max Failed Login Attempts Agent must be between 1 and 9. Zero, null, and characters are invalid.

  • Password Reuse Restriction Count: Sets the number of previous passwords that the user or agent cannot reuse when resetting the password. The minimum and default value for this field is 4 and the maximum value is 25.
  • Browser Session Security:- Requires users to log back in any time the browser is closed
  • Password Strength - By : By using a password strength slider, you can configure the password strength to Medium, Strong, or Very Strong (left to right). Hover the mouse on the password strength slider to get the description about the password requirements.
  • Admin Set Passwords Are Temporary - LVP users : LVP users and agents must change the password on the first login or when updating the password by the permitted LVP user.
Info
iconfalse

If the permitted LVP users change the password for their own user account, they are not prompted to change the password.

Session Timeout

You can enable or disable the session timeout parameters. 

  • Browser Session Security: To ensure security, enable this parameter for the users and agents to login every time they launch the LVP in a browser.
  • Inactivity Timeout: You can set the inactivity timer for intervals of 5 mins, 15 mins, 30 mins, 1hr, 2 hrs, or 1 day. After the lapse of the inactivity timeout a warning message appears to the user.
  • Show Inactivity Warning (Agent/User): Set this parameter to display Inactivity warning for users and agents before the session is timed out. For example, if you set 1min, a warning message appears one minute before the inactivity timer is activated and the user or the agent has to login again.
  • Maximum Session Timeout: You can set the browser session timeout for 5 mins, 15mins, 30 mins, 1hr, 2hrs, 1 day, or 7 days. This setting enables the user or the agent to stay in the session according to the setting.

Subnet IP 

List of permitted IPs that can access the LVP. Permitted users can add/delete the IPs, as well as export files in .csv format.

...