Overview

The security section enables admins to configure and monitor security related functionality within the Quiq platform.

General Tab

817

Trusted Domains

This is defaulted to "All Domains". For a high security environment such as production, we suggest you set this field to 'Whitelisted Domains' and set a list of trusted domains.

IP Whitelist

IP address ranges that are allowed to access your Quiq agent applications and API’s. An empty value indicates access is allowed from any IP address, which is the default

Unsafe Links

Quiq can warn agents about potentially unsafe links found in incoming messages using data provided by Google. Google works to provide the most accurate and up-to-date information about unsafe web resources. However, Google cannot guarantee that its information is comprehensive and error-free: some risky sites may not be identified, and some safe sites may be identified in error.

Two-Factor Authentication (2FA)

The "Require Two-Factor Authentication" toggle button (disabled by default), that gives you the ability to enforce 2FA setup for all users. The toggle button is read-only for Admins who haven't set up 2FA yet for their own account - once an Admin sets up 2FA it becomes editable for them. The new 2FA section isn't available in sites with a CRM integration.

Public API Keys Tab

API keys are used to abstract a user account’s credentials for the purposes of making calls to Quiq API endpoints such as StartConversation or SendNotification. This page provides a list of all the keys created for various users. Keys are managed in the Users section.

811

Audit Log Tab

Certain key events are now logged for review by Quiq application admins. The current event types include configuration updates and user creates and edits.

808