Escan/english/escanmac5/scan and Escan/english/escan20/twofactorauthentication: Difference between pages

From eScan Wiki
(Difference between pages)
Jump to navigation Jump to search
imported>Webmktg
 
imported>TechContent
No edit summary
 
Line 1: Line 1:
<!--<dynbox title="eScan 11 Offically Released" posx=XXpx posy=XXpx iconcolor="color" iconbgcolor="color" boxcolor="color" boxbgcolor="color" color="color" bgcolor="color">To Download please check Windows Downloads Section</dynbox>-->
<h2 style='color:#00B050;font-size:24.0pt;font-family:"Open Sans"'>Two-Factor Authentication</h2>
{| class="wikitable" border="0"
|-
{| id="mp-topbanner" style="width:100%; background:#fcfcfc; margin-top:1.2em; border:1px solid #ccc;"
| style="width:10%; color:#000;" |
{| style="width:100px; border:none; background:none;"
| [[Image:escan-g.jpg]]
|}
|style="text-align:left;"|'''·''' [[Escan/english/FAQ-eScan|<font size=1.5 color="blue"
align="left">eScan</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/MailScan-AFT|<font size=1.5
color="blue">MailScan</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/Technologies|<font size=1.5
color="blue">Technologies</font>]]
|style="text-align:right;"|&nbsp;&nbsp;'''·''' [[Technical Info|<font size=1.5 color="blue">Technical
Info</font>]]&nbsp;&nbsp;'''·''' [[Escan/english/Security_Awareness|<font size=1.5 color="blue">Security
Awareness</font>]]&nbsp;&nbsp;'''·''' [[User_Guides|<font size=1.5 color="blue">User Guides</font>]]
|}


{| class="wikitable" border="0"
<p style='font-size:11.0pt;font-family:"Open Sans"'>The system login password is Single-Factor Authentication which is considered unsecure as it may put your system's data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your computer.
|}
<h2  id="mp-tfp-h2" style="margin:0; background:#95C33D; font-size:120%; font-weight:bold; border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">eScan Anti-Virus Security for Mac Version 5.x Online Help</h2>


The 2FA feature mandates you to enter a Time-based One-Time Password (TOTP) after entering Windows login credentials. So, even if somebody knows your login credentials, the 2FA feature secures data against unauthorized logins.


__TOC__
You can use various options to set password for the 2FA. You can set password or you can use the eScan administrator password in case the system is offline (without internet access). To use 2FA online authentication, you need to install the Authenticator app for Android devices from Play Store or for iOS devices from App Store on your smart device. The Authenticator app needs camera access for scanning a QR code in the Authenticator app.</p>
<table border=1 cellspacing=0 cellpadding=0 width=613
style='background:#DBE5F1;border-collapse:collapse;border:none;'>
<tr>
  <td width=73 style='width:54.9pt;border:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt'>
  <p align=center style='margin-bottom:0in;text-align:center;font-size:11.0pt;font-family:"Open Sans"'><b>NOTE</b></p>
  </td>
  <td width=540 style='width:405.0pt;border:solid windowtext 1.0pt;border-left:
  none;padding:0in 5.4pt 0in 5.4pt'>
  <p style='margin-bottom:0in;font-size:11.0pt;font-family:"Open Sans"'><span style='color:black'>Ensure  that the smart device's date and time matches with the system's date and time  or else TOTPs generated by app won't get validated.</span></p>
  </td>
</tr>
</table>


== <b> Scan </b>==
<h3 style='font-size:22.0pt;font-family:"Open Sans"'>Enabling 2FA login</h3>


The Scan module helps you to perform on-demand scanning on the selected files/directories, home directories, and my computer. Apart from system scanning, you can scan all the connected USB’s and CD-ROM devices, through auto and manual scan feature. You have various options to set for eScan to take action when any viruses are detected. The logs of scanning can be located at a specific location with a level of log you want to view. You can quarantine the suspected or infected files, and also perform real-time monitoring on files and reports.  
<p style='font-size:11.0pt;font-family:"Open Sans"'>To enable 2FA login, follow the below steps:</p>
<ol>
<li style="font-size: 11.0pt; font-family: 'Open Sans';">Open eScan Protection Center, </li></ol>
<ul> <ul>
<li style="font-size: 11.0pt; font-family: 'Open Sans';">From desktop, double-click the Protection center icon present in the system tray.</li>
<li style="font-size: 11.0pt; font-family: 'Open Sans';">From taskbar, right-click the Protection Center&nbsp;icon and click <strong>Open eScan Protection Center</strong>.</li>
</ul></ul>
<ol style='margin-top:0in' start=2 type=1>
<li style="font-size: 11.0pt; font-family: 'Open Sans';">Click <b>two-factor authentication</b>.</li>
</ol>
<ol style='margin-top:0in' start=3 type=1>
<li style="font-size: 11.0pt; font-family: 'Open Sans';">Select <b>Enable Two-Factor uthentication</b>. This      will enable the other configuration settings. </li>
</ol>


Click this module, to access the scan screen. On the screen, you can configure the following settings:
<table border=1 cellspacing=0 cellpadding=0 width=570
style='width:427.5pt;margin-left:9.9pt;background:#DBE5F1;border-collapse:
collapse;border:none' style="font-size: 11.0pt; font-family: 'Open Sans';">
<tr>
  <td width=78 style='width:58.5pt;border:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt'>
  <p style='margin-bottom:0in;line-height:normal' style="font-size: 11.0pt; font-family: 'Open Sans';"><b>NOTE</b></p>
  </td>
  <td width=492 valign=top style='width:369.0pt;border:solid windowtext 1.0pt;
  border-left:none;padding:0in 5.4pt 0in 5.4pt'>
  <p style='margin-bottom:0in;line-height:normal' style="font-size: 11.0pt; font-family: 'Open Sans';"><b>Unlock</b> option will  be enabled only after selecting <b>User Logon</b> option.</p>
  </td>
</tr>
</table>


&nbsp;
<ol style='margin-top:0in' start=4 type=1>
[[Image:Scan window5.5 4.jpg|center]]
<li style="font-size: 11.0pt; font-family: 'Open Sans';">You can configure it according to your requirement and click <b>Save</b>.
&nbsp;
The 2FA will work according to the configuration.
</li>
</ol>


* <h3><b>Scan Options:</b></h3>
<h4><a name="_Toc64042303"></a><a name="_Login_Scenarios"></a>Login Scenarios</h4>


::<li><h5><b>Scan My Computer:</b></h5> Click this link, if you want to scan the entire system.</li>
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>The 2FA feature
::<li><h5><b>Scan home directories:</b></h5> Click this link, if you want to scan all files and folders of home directories of the logged in&nbsp;user.</li>
can be used for following all login scenarios:</p>
::<li><h5><b>Custom Scan:</b></h5> Click this link, if you want to scan specific files/ directories.</li>
::<li><h5><b>Scan USB devices:</b></h5> Click this link, if you want to scan any specific USB storage devices like Pen drive, CD-ROM device, and so on. Automatic scanning of the USB storage devices, as and when it is connected and mounted, is always active by default.</li>


*<h3><b>Additional Options:</b></h3>
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>


::<li><h5><b>Options:</b></h5></li>  
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>RDP</b></p>


:This option helps you configure scan settings for virus detection.  
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>RDP stands for
Remote Desktop Protocol.  Whenever someone takes remote connection of a your
system, the personnel will have to enter system login credentials and 2FA passcode
to access the system.</p>


&nbsp;
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>
[[Image:Options .jpg|center]]
&nbsp;


<ol>
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Safe Mode</b></p>
<li>On the <b>Options</b> tab, specify the following field details.</li>


<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>After a system
is booted in Safe Mode, the personnel will have to enter system login
credentials and 2FA passcode to access the system.</p>


{| id="table1" style="border-collapse: collapse; border-color: #000000; padding: 1px" width="110%" border="1" cellspacing="1"
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>
|- bgcolor="#ffffff" valign="center"
| style="border-style: solid; border:"1"; border-width: 1px" width="30%" height="25" bgcolor="#D0E7F6" align="left" |
<font face="Arial">'''Field'''</font> 
| style="border-style: solid; border:"1"; border-width: 1px" width="200" bgcolor="#D0E7F6" align="left" |
<font face="Arial">'''Description'''</font>
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300" align="left" valign=top | <font face="Arial">'''Action in case of virus detection'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |It indicates a type of action which you want eScan real-time scanner to take, in case of virus detection.
By default, Disinfect (if not possible, quarantine file) option is selected. Following are the types of actions:


:<b>Log Only:</b> It indicates the log that logs information of only the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Local Logon</b></p>


:• <b>Disinfect (if not possible, log):</b> It tries to disinfect and if disinfection is not possible it logs the information of only the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>Whenever a
system is powered on or restarted, the personnel will have to enter system
login credentials and 2FA passcode to access the system.</p>


:• <b>Disinfect (if not possible, delete file):</b> It tries to disinfect and if disinfection is not possible it deletes the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>


:<b>Disinfect (if not possible, quarantine file):</b> It tries to disinfect and if disinfection is not possible it quarantines the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Unlock</b></p>


:• <b>Disinfect (if not possible, rename file):</b> It tries to disinfect and if disinfection is not possible it renames the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>Whenever a
system is unlocked, the personnel will have to enter login credentials and 2FA
passcode to access the system.</p>


:• <b>Disinfect (if not possible, ask user):</b> It tries to disinfect and if disinfection is not possible it asks user to take an action on the infected object.
<h4><a name="_Toc64042304">Password Types</a></h4>


:• <b>Delete:</b> It directly deletes the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>You can use
following password types to log in:</p>


:• <b>Quarantine:</b> It directly quarantines the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>


:<b>Rename:</b> It directly renames the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Use eScan
Administrator Password</b></p>


:• <b>Ask user:</b> It asks user to take an action on the infected object.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>You can use the
existing eScan Administrator password for 2FA login.</p>


Select an appropriate option from the box.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  colspan = "3" align="left" | <font face="Arial">'''Scan Settings'''</font>


|- bgcolor="#ffffff"
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Use Other
| style="border-style: solid; border:"1"; border-width: 1px" width="300" align="left" valign=top | <font face="Arial"> '''Include Sub-directory'''</font>
Password</b></p>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |It indicates the archived files, such as zip, rar, and so on.
Select this check box if you want eScan real-time protection to scan archived files.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Mails'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | It indicates the compressed executables.
By default, it is selected. Select this check box if you want eScan real-time protection to scan packed files.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Heuristic'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
Select this check box if you want eScan to check for unusual sequence(s), pattern(s), or content.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Cross file system'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
Cross file system means checking files on different partitions and/or network mounted file systems. Select this check box if you want eScan on-demand scanner to check cross file system in scan path.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Archives'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | It indicates the archived files, such as zip, rar, and so on.
Select this check box if you want eScan real-time protection to scan archived files.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Packed'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |It indicates the compressed executables.
By default, it is selected. Select this check box if you want eScan real-time protection to scan packed files.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Follow symbolic links'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | It indicates the symbolic links that allows you to access one file from another through links. This option specifies the on-demand scanner whether to resolve the symbolic link before actually scanning the object or to skip any such links.
Select this check box if you want to follow symbolic links.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  colspan = "3" align="left" | <font face="Arial">'''Log Settings'''</font>
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Log location'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | It indicates the location where you want eScan real-time scanner to save the log file.
By default, /var/MicroWorld/var/log location appears. If you want you can change the location.
Click the [[Image:Browse icon.jpg]] button and then click the <b>Browse</b> button to select the folder where you want to save the log file.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Log level'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | It indicates a type of log level which you want eScan real-time protection to display. Following are the type of log level:
By default, infected is selected.


:• <b>All:</b> This option will specify a detailed eScan log.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>You can set a
new password which can be combination of uppercase, lowercase, numbers, and
special characters. </p>


:• <b>Infected:</b> This option will specify only details of the infected objects in the eScan log.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>&nbsp;</p>


:<b>Minimum:</b> This option will specify only a minimum detail of the objects scanned in the eScan log.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'><b>Use Online
Two-Factor Authentication</b></p>


Click an appropriate option.
<p class=MsoNormal style='margin-bottom:0in;line-height:normal'>To use Online
|- bgcolor="#ffffff"
2FA authentication, follow the steps given below:</p>
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  colspan = "3" align="left" | <font face="Arial">'''Exclude Options'''</font>


|- bgcolor="#ffffff"
<ol style='margin-top:0in' start=1 type=1>
| style="border-style: solid; border:"1"; border-width: 1px" width="300" align="left" valign=top | <font face="Arial"> '''Files and directories'''</font>
  <li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" | Click the [[Image:Exclude icon.jpg]] icon and then click the <b>Browse</b> button to select the files and directories that you want to exclude from real-time scanning.
    0in;line-height:112%'>Install the Authenticator app from Play Store for
|- bgcolor="#ffffff"
    Android devices or App Store for iOS devices.</li>
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''File types'''</font>  
  <li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
    0in;line-height:112%'>Open the Authenticator app and tap <b>Scan a barcode</b>.</li>
Click the [[Image:Exclude icon.jpg]] icon and then click the <b>Browse</b> button to select the file types  that you want to exclude from real-time scanning.
</ol>
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300" align="left" valign=top | <font face="Arial"> '''Block USB storage device(s)'''</font>
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
Select this check box, if you want to block all connected USB’s and CD-ROM storage devices from real-time scanning.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Restore global settings'''</font>  
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
It indicates the settings of an administrator. It is available only for normal user.
 
Click this link, if you want to restore global settings.
|- bgcolor="#ffffff"
| style="border-style: solid; border:"1"; border-width: 1px" width="300"  align="left" valign=top | <font face="Arial"> '''Set to default'''</font>  
| style="border-style: solid; border:"1"; border-width: 1px" width="336" align="left" valign="center" |
It indicates the default settings set at first time installation.
Click this link to set the default settings.
|}


<p class=MsoNormal align=center style='margin-top:12.0pt;margin-right:0in;
margin-bottom:12.0pt;margin-left:0in;text-align:center;line-height:normal'><span
style='color:#595959'><img border=0 width=356 height=224 id="Picture 6"
src="TSS%20UG%20v20_reviewed_files/image107.png"></span></p>


<li>Click the <b>Save</b> button.</li>
<ol style='margin-top:0in' start=3 type=1>
The settings get saved.
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
    0in;line-height:112%'>Now, open <b>eScan Protection Center</b> on your
    system and click <b>two-factor authentication</b>.</li>
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
    0in;line-height:112%'>Select <b>Enable Two-Factor Authentication</b></li>
</ol>
</ol>


::<li><h5><b>Logs:</b></h5></li>  
<p class=MsoNormal align=center style='margin-top:12.0pt;margin-right:0in;
margin-bottom:12.0pt;margin-left:0in;text-align:center;line-height:normal'><img
border=0 width=516 height=412 src="TSS%20UG%20v20_reviewed_files/image108.jpg"></p>


::Click this link, if you want to view and delete the scan log. It displays log list of the scanned files with file name, date, and file size.
<ol style='margin-top:0in' start=5 type=1>
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
    0in;line-height:112%'>Configure the login scenarios according to your need
    and select <b>Use Online Two-Factor Authentication</b></li>
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
    0in;line-height:112%'>On the top right corner, click <b>QR code for TFA</b>.</li>
</ol>


&nbsp;
<p class=MsoNormal style='margin-top:0in;margin-right:0in;margin-bottom:0in;
[[Image:Log 5.5 4.jpg|center]]
margin-left:.5in;line-height:normal'>A QR code appears.</p>
&nbsp;


::<li><h5><b>Quarantined:</b></h5></li>
<p class=MsoNormal align=center style='margin-top:12.0pt;margin-right:0in;
margin-bottom:12.0pt;margin-left:0in;text-align:center;line-height:normal'><img
border=0 width=324 height=362 src="TSS%20UG%20v20_reviewed_files/image109.jpg"></p>


::Click this link, if you want to view and delete the infected files. You can also restore the deleted files, if needed. It displays the list of infected files that have been quarantined with file name, date, file size, and virus name. It also displays the path where quarantined files are saved with number of quarantined files.
<span style='font-size:11.0pt;line-height:107%;font-family:"Open Sans",sans-serif'><br
clear=all style='page-break-before:always'>
</span>


&nbsp;
<p class=MsoNormal style='margin-bottom:8.0pt;line-height:107%'>&nbsp;</p>
[[Image:Quarantined 5.5 4.jpg|center]]
&nbsp;


::<li><h5><b>Scheduler:</b></h5></li>
<ol style='margin-top:0in' start=7 type=1>
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
    0in;line-height:112%'>Scan the onscreen QR code via the Authenticator app.</li>
</ol>


:The scheduler module helps you to perform scanning on local hard disk drives and selected directories and files on a schedule month, date, hour, minute, and day. Under <b>Options</b> window, you have various options to set for eScan to take action when any viruses are detected.
<p class=MsoNormal style='margin-top:0in;margin-right:0in;margin-bottom:0in;
margin-left:.5in;line-height:normal'>A Time-based One-Time Password (TOTP)
appears on smart device.</p>


:This module is available only for administrator, but a normal user can also access and configure the scheduler settings by logging on as an administrator. It displays the list of scheduled tasks to be executed at a specific time. Click this module, to schedule the tasks for scanning. You can also edit, delete, or purge the scheduled tasks. With <b>Delete</b> button, you can delete any scheduled task, but <b>Purge</b> button is meant only for outdated schedules, wherein if you click <b>Purge</b> button outdated schedules get automatically deleted.
<p class=MsoNormal align=center style='margin-top:12.0pt;margin-right:0in;
margin-bottom:12.0pt;margin-left:0in;text-align:center;line-height:normal'><span
style='font-size:12.0pt;font-family:"Calibri",sans-serif;color:#595959'><img
border=0 width=410 height=229 id="Picture 9"
src="TSS%20UG%20v20_reviewed_files/image110.jpg"></span></p>


&nbsp;
<ol style='margin-top:0in' start=8 type=1>
[[Image:scheduler 5.5 4.jpg|center]]
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
&nbsp;
    0in;line-height:112%'>You can use this TOTP for login. This TOTP will get
    updated after every 30 seconds.</li>
</ol>


:<b>Note:</b> The<b>*Schedule(s) outdated</b> displayed at the lower-left corner of the window indicates the outdated schedules. The schedules, which are run only once, are called outdated schedules.
<p class=MsoNormal style='margin-bottom:0in;line-height:112%'>&nbsp;</p>


:When you click <b>Add task</b> button, the following two tabs appear:
<h3><a name="_Toc39670553"></a><a name="_Toc64042305"></a><a name="_Toc66462150">Disabling
2FA login</a></h3>


:::::<li><b>Schedule:</b></li>
<p class=MsoNormal style='margin-bottom:0in'>To disable the 2FA login, follow
the below steps:</p>


:::::It helps you to scan local hard disk drives and selected directories/files. When you select <b>Scan my computer</b> option, eScan scans the entire system. If you want to scan only specific directories and files, click the <b>Scan following directories and files</b> option, and then click the <b>Browse</b> button to select the directories and files of your choice.
<ol style='margin-top:0in' start=1 type=1>
 
<li class=MsoNormal style='margin-bottom:0in;margin-bottom:0in;margin-top:
:::::You can schedule the month, date, hour, minute, and day, on which you want to run the task.
    0in;line-height:112%'>Open <b>eScan Protection Center</b> &gt; <b>two-factor
 
    authentication</b>.</li>
&nbsp;
<li class=MsoNormal style='margin-bottom:0in;line-height:normal'>Uncheck the <b>Enable
[[Image:Scan Scheduler - Schedule window.jpg|center]]
    Two-Factor Authentication </b>option.</li>
&nbsp;
<li class=MsoNormal style='margin-bottom:0in;line-height:normal'>Click <b>Save</b>.
 
    The 2FA feature gets disabled.</li>
:::::<li><b>Options:</b></li>
</ol>
 
:::::It helps you to set an action to be taken by eScan when any virus is detected. Under <b>Settings</b> section, select appropriate check boxes, on which you want to perform scanning.


&nbsp;
<b><span style='font-size:20.0pt;line-height:115%;font-family:"Open Sans",sans-serif;
[[Image:Scan Scheduler - Options window.jpg|center]]
color:#00B050'><br clear=all style='page-break-before:always'>
&nbsp;
</span></b>

Revision as of 09:32, 23 April 2021

Two-Factor Authentication

The system login password is Single-Factor Authentication which is considered unsecure as it may put your system's data at high risk of compromise. The Two-Factor Authentication, also more commonly known as 2FA, adds an extra layer of protection to your computer. The 2FA feature mandates you to enter a Time-based One-Time Password (TOTP) after entering Windows login credentials. So, even if somebody knows your login credentials, the 2FA feature secures data against unauthorized logins. You can use various options to set password for the 2FA. You can set password or you can use the eScan administrator password in case the system is offline (without internet access). To use 2FA online authentication, you need to install the Authenticator app for Android devices from Play Store or for iOS devices from App Store on your smart device. The Authenticator app needs camera access for scanning a QR code in the Authenticator app.

NOTE

Ensure that the smart device's date and time matches with the system's date and time or else TOTPs generated by app won't get validated.

Enabling 2FA login

To enable 2FA login, follow the below steps:

  1. Open eScan Protection Center,
    • From desktop, double-click the Protection center icon present in the system tray.
    • From taskbar, right-click the Protection Center icon and click Open eScan Protection Center.
  1. Click two-factor authentication.
  1. Select Enable Two-Factor uthentication. This will enable the other configuration settings.

NOTE

Unlock option will be enabled only after selecting User Logon option.
  1. You can configure it according to your requirement and click Save. The 2FA will work according to the configuration.

<a name="_Toc64042303"></a><a name="_Login_Scenarios"></a>Login Scenarios

The 2FA feature can be used for following all login scenarios:

 

RDP

RDP stands for Remote Desktop Protocol.  Whenever someone takes remote connection of a your system, the personnel will have to enter system login credentials and 2FA passcode to access the system.

 

Safe Mode

After a system is booted in Safe Mode, the personnel will have to enter system login credentials and 2FA passcode to access the system.

 

Local Logon

Whenever a system is powered on or restarted, the personnel will have to enter system login credentials and 2FA passcode to access the system.

 

Unlock

Whenever a system is unlocked, the personnel will have to enter login credentials and 2FA passcode to access the system.

<a name="_Toc64042304">Password Types</a>

You can use following password types to log in:

 

Use eScan Administrator Password

You can use the existing eScan Administrator password for 2FA login.

 

Use Other Password

You can set a new password which can be combination of uppercase, lowercase, numbers, and special characters.

 

Use Online Two-Factor Authentication

To use Online 2FA authentication, follow the steps given below:

  1. Install the Authenticator app from Play Store for Android devices or App Store for iOS devices.
  2. Open the Authenticator app and tap Scan a barcode.

<img border=0 width=356 height=224 id="Picture 6" src="TSS%20UG%20v20_reviewed_files/image107.png">

  1. Now, open eScan Protection Center on your system and click two-factor authentication.
  2. Select Enable Two-Factor Authentication

<img border=0 width=516 height=412 src="TSS%20UG%20v20_reviewed_files/image108.jpg">

  1. Configure the login scenarios according to your need and select Use Online Two-Factor Authentication
  2. On the top right corner, click QR code for TFA.

A QR code appears.

<img border=0 width=324 height=362 src="TSS%20UG%20v20_reviewed_files/image109.jpg">

 

  1. Scan the onscreen QR code via the Authenticator app.

A Time-based One-Time Password (TOTP) appears on smart device.

<img border=0 width=410 height=229 id="Picture 9" src="TSS%20UG%20v20_reviewed_files/image110.jpg">

  1. You can use this TOTP for login. This TOTP will get updated after every 30 seconds.

 

<a name="_Toc39670553"></a><a name="_Toc64042305"></a><a name="_Toc66462150">Disabling 2FA login</a>

To disable the 2FA login, follow the below steps:

  1. Open eScan Protection Center > two-factor authentication.
  2. Uncheck the Enable Two-Factor Authentication option.
  3. Click Save. The 2FA feature gets disabled.

Retrieved from "https://wiki.escanav.com/index.php?title=Escan/english/escanmac5/scan&oldid=21663"