Security
Overview
The security section enables admins to configure and monitor security related functionality within the Quiq platform.
General Tab
Trusted Domains
This is defaulted to "All Domains". For a high security environment such as production, we suggest you set this field to 'Whitelisted Domains' and set a list of trusted domains.
IP Whitelist
IP address ranges that are allowed to access your Quiq agent applications and API’s. An empty value indicates access is allowed from any IP address, which is the default.
Unsafe Links
Quiq can warn agents about potentially unsafe links found in incoming messages using data provided by Google. Google works to provide the most accurate and up-to-date information about unsafe web resources. However, Google cannot guarantee that its information is comprehensive and error-free: some risky sites may not be identified, and some safe sites may be identified in error.
Two-Factor Authentication (2FA)
The "Require Two-Factor Authentication" toggle button (disabled by default), that gives you the ability to enforce 2FA setup for all users. The toggle button is read-only for Admins who haven't set up 2FA yet for their own account - once an Admin sets up 2FA it becomes editable for them. The new 2FA section isn't available in sites with a CRM integration.
Public API Keys Tab
API keys are used to abstract a user account’s credentials for the purposes of making calls to Quiq API endpoints such as StartConversation or SendNotification. This page provides a list of all the keys created for various users. Keys are managed in the Users section.
Audit Log Tab
Certain key events are now logged for review by Quiq application admins. The current event types include configuration updates and user creates and edits:
CSV Export
Admins can perform a CSV export of Audit Log data using the Export Audit Log Data button. The Audit Log CSV export will include a maximum of 100,000 rows, sorted by timeStamp descending. When the Entry Type Filter is populated in the Audit Log page, so that a single event type is returned, if an export is then initiated the CSV file will only contain data for the Entry Type selected in that filter.
Updated about 1 month ago