Target
- Administrators who perform initial setup and operational management of HENNGE Access Control
Purpose
- Explains the procedure for creating a new Access Policy Group in HENNGE Access Control.
Notes
- This article is based on product specifications as of November 2024 and is subject to change without notice.
- Administrator permissions for HENNGE Access Control are required for actual screen verification and configuration changes.
- For instructions on accessing the administration screen, please refer to the following article:
Access Control Accessing the Administration Screen
Procedure
1. Access the [Access Control] - [Access Policy Group] in the left menu of the HENNGE Access Control administration screen.
2. Click [Add] in the upper right of the Access Policy Group screen.
3. Configure each item and click [Save].
※ Descriptions of each item are provided at the bottom of this article.
4. Assign the created Access Policy Group to users.
For assignment instructions, please refer to the following article:
Assigning Access Policy Groups to Users (Modern view)
Items (Base Configuration)
※ The displayed items may vary depending on the contract.
For information on Access Policy Templates, please refer to the following article:
Access Control Creating a New Access Policy Template
Name | Description | Notes |
Display Name | Name of the Access Policy Group | Can be set up to 256 characters. |
Authentication Cookie Expiration | If [Keep me logged in] is checked on the login screen: Time to keep the login status using cookies in the browser |
Except when manually logging out, the login status will be maintained within the set time even if the browser is restarted, etc. |
If [Keep me logged in] is not checked or displayed on the login screen: Maximum retention time for a user's login session | If the set time is exceeded while continuously opening one page, logging in will be required again upon page transition. ※ If [Keep me logged in] is not checked or displayed, logging out will occur when the browser is closed. |
|
Conditions for Allowing Access |
|
|
Conditions for Allowing Legacy Authentication |
|
Displayed only when integrated with Microsoft 365. |
Items (One-Time Password Settings)
Name | Description | Notes |
Conditions for not requiring OTP |
|
|
Conditions for allowing OTP shared key changes |
|
If you set the conditions for allowing OTP notification email address changes and these conditions are both set to "Never allow," the "OTP (One-Time Password) Settings" will not be displayed on the user screen. |
Conditions for allowing OTP notification email address changes |
|
If you set the conditions for allowing OTP shared key changes to "Never allow," the "OTP (One-Time Password) Settings" will not be displayed on the user screen. |
Item (Certificate Settings)
Name | Description | Notes |
Conditions for displaying owned device certificates |
|
If access is not allowed, the "Client Certificate" menu will not be displayed in the upper right corner of the user portal. |
Conditions for allowing device certificate revocation |
|
To use this feature, "Conditions for displaying owned device certificates" must be allowed. |
Item (HENNGE Secure Browser Settings)
Name | Description | Notes |
Conditions for Allowing Access to Secure Browser Settings Screen |
|
|
Conditions for Allowing Display of Unread Email Check Settings Screen |
|
|
Automatic Device Authentication Settings |
|
You can check the default settings in [Domain Settings] - [Secure Browsers Related] - [General] - [Automatic Device Authentication]. |
Items (Allowed Service Providers)
Set whether to allow access to services connected in the HENNGE Access Control Administration screen [System] - [Connected Services] or not.
※ Access to connected services with a checkmark will be allowed.