Manage Enterprise Domain
Use Domain Administration to configure your Enterprise domain.
|
1.
|
Use the URL provided by Illumina to access your domain account. |
|
2.
|
Select the Domain tab. |
|
3.
|
Use the links in the navigation pane to access domain administration functions. |
Usage Reports
Generate reports of application usage and account activity.
|
2.
|
Select the Available Report(s) drop-down arrow, and select a report type: |
|
•
|
General Usage Report—An overview of the application usage. The report includes the following columns. |
|
•
|
User Name—The name of the user. |
|
•
|
Total Sessions—The number of successful login sessions. |
|
•
|
Last Login—The last time the user logged in. |
|
•
|
Access Counts—The total number of times user accessed the login page |
|
•
|
Registration Date—The date the user registered. |
|
•
|
Login—The login ID of the user. |
|
•
|
Login Report—An overview of account activity. The report includes the following columns. |
|
•
|
Date—The time the activity occurred. |
|
•
|
Category—The login category. |
|
•
|
Client-address—The IP address used to access the application. |
|
•
|
Application—The name of the Illumina Application |
|
•
|
User-email—The email address of the user. |
|
•
|
Domain-name—The name of the enterprise domain the user belongs to. |
|
•
|
Event-type—The type of login event. |
|
3.
|
Select a date range for the report. |
|
4.
|
In the Email To field, enter the email addresses of one or more recipients. Separate each address by a comma. |
The report is generated and emailed to the specified recipients.
Password Management
Configure requirements for user passwords.
|
1.
|
Select Password Management. |
|
2.
|
Configure strength of password parameters. |
|
a.
|
Select the minimum number of characters required for a password. The default is 8. |
|
b.
|
To require the use of special characters in the password, select the special characters checkbox. |
|
c.
|
To require the use of at least one numeral, select the numbers checkbox. |
|
d.
|
To require uppercase or lowercase letters, select the corresponding letters checkbox. |
|
3.
|
Configure account lock parameters. |
|
a.
|
Select the number of times a user can enter an incorrect password before the account is locked. |
|
b.
|
Select the number of minutes before the account can be reset after it is locked. |
|
4.
|
Configure password re-use check parameters. |
|
a.
|
Enter the number of days that must pass before a password can be reused. |
|
b.
|
Enter the number of passwords a user must create before a password can be reused. |
|
5.
|
Type a message that describes the configured password policy. |
Session Management
Use Session Management to configure session timeouts, JSON Web Token (JWT) and API expirations, and API key limits.
|
1.
|
Select Session Management. |
|
2.
|
Enter values for the following settings: |
|
•
|
User's idle session timeout—The number of minutes a user session can be idle before it automatically times out. Setting the value to -1 disables session timeout. |
|
•
|
JWT expiration time—The number of minutes a JWT is active before it expires. |
|
•
|
API key expiration—The number of days an API key is valid before it expires. Setting the value to -1 disables expiration. |
|
•
|
Active API key limit—The maximum number of active API keys allowed for the domain. |
User Management
View and manage users in your domain account.
View and Manage Users
You can view user account details, active status, domain access, and API keys.
|
1.
|
Select User Management and then select Users. |
|
2.
|
To find a user, enter the user's email address, and then select Find. |
|
3.
|
To view and manage details for a user, select Manage, and then perform any of the following actions: |
Manage Domain Access
You can allow all users in an email domain, or individual users (for example, a collaborator at a core lab) to access your domain account.
|
1.
|
Select User Management and then select Allowed Emails. |
|
2.
|
To enable access for all users in a domain, enter an email domain name in the Entire Domains field, and then select Add. Omit the @ symbol. |
Enabling common email domain names, such as gmail.com or hotmail.com, enables access for all users at that domain. For users with common domain email addresses, use the individual access option.
|
3.
|
To allow access to specific users, enter the individual email address in the Specific User field, and then select Add. |
Manage Administrators
Add or remove domain administrators. Only domain account users can be added as administrators.
|
1.
|
Select User Management, and then select Administrators. |
|
1.
|
[Optional] Select Remove next to an administrator's name to remove them. |
|
2.
|
In the Domain administrator window, select Configure an administrator. |
|
3.
|
In the Email field, enter the email address of the user you want to be a domain administrator, and select Check. |
|
4.
|
Enter the first and last name of the user, and then select Save. |
Access Management
Use Access Management to restrict the IP addresses that can access the application.
|
1.
|
Select Access Management. |
|
2.
|
Enter an IP address or block range, and then select Add. |
Domain Authentication
Use the following steps to configure the authentication method.
|
1.
|
Select Authentication. |
|
2.
|
Select an authentication type. |
|
•
|
Default—The Illumina Authentication System manages user credentials. |
|
•
|
SAML—The user is redirected to the SAML provider for authentication. |
|
3.
|
If you selected SAML authentication, upload a configuration file. |
Multi-Factor Authentication
Use the following steps to configure multi-factor authentication (MFA) for your domain.
|
1.
|
Select Multi-Factor Authentication. |
|
2.
|
Select Enable Multi-Factor Authentication [MFA] in this Domain. |
|
3.
|
Configure the following options: |
|
•
|
Allowed Days to skip MFA (in days)—The number of days allowed before reauthentication is required. |
|
•
|
Max unsuccessful tries—The number of failed authentications before account is locked. |
