Zyxel Nebula - Configuring two-factor authentication (2FA) for access to your organization in Zyxel Nebula

Securing your Zyxel Nebula organization is crucial for protecting your network infrastructure, devices, and sensitive data. As Nebula is a cloud-based platform that manages network environments, ensuring proper administrative access controls is essential to prevent unauthorized access, data breaches, and service interruptions.

To maintain a secure Nebula organization, access should be restricted to administrators who strictly adhere to security best practices. This approach minimizes vulnerabilities, reduces the risk of cyberattacks, and ensures that only authorized personnel can manage and configure network resources. Below are the key security measures recommended for managing Zyxel Nebula organizations effectively.

Enable Two-Factor Authentication (2FA):

Go to Nebula -> Organization-wide -> Organization-wide manage  ->Organization settings

Enable two-factor authentication

Note:

  • Zyxel accounts utilizing Google or Apple login methods are incompatible with 2FA enforcement at the Org level. (If you use Google/Apple Account to log in, please contact Zyxel Support to change your account login method.)
  • You can enable this feature when the current login account enables 2FA.
  • After it is enabled, all administrators in the organization will be forced to log out.

To enable two-factor authentication in Nebula, ensure that 2FA is configured in the user's settings within the MyZyxel Portal.

To configure this, visit: https://account.zyxel.com/user/two-factor-auth

Set up two-factor authentication  - Enable and then follow the GUI instructions.  Once 2FA is set up, go to your organization in Nebula and activate 2FA.

Go to Nebula -> Organization-wide -> Organization-wide manage -> Organization settings

Save the changes and re-login to Nebula.

Configure Inactivity Timeouts

Inactivity timeouts automatically log out idle sessions to prevent unauthorized access from unattended devices. This is particularly important for Nebula administrators accessing the platform from shared or remote environments.

Go to Nebula -> Organization-wide -> Organization-wide manage -> Organization settings

Restrict Access by IP Range

For added security, configure Nebula to allow administrative access only from specific IP ranges. This limits exposure to unauthorized attempts and ensures that management actions originate only from approved networks.

Device ownership takeover

Critical security feature within the Zyxel Nebula platform, designed to safeguard against unauthorized control of devices. This feature ensures that only the rightful owner of a device can claim or transfer it within the organization.

Articles in this section

Was this article helpful?
0 out of 1 found this helpful
Share