Skip to main content

Authentication Settings

Hermes SEG utilizes Authelia Authentication Server for controlling access to the the Hermes SEG Administration Console. The Authentication Settings page allows you to change many Authelia settings to suit your needs.

JWT Secret

The JWT Secret is used to craft JWT tokens by the identity verification process. Hermes SEG randomly generates a 20-character alphanumeric string at the time of installation. It's usually not necessary to change this field. However, if you wish to change it, Hermes SEG will accept a minimum 12-character and a maximum 20-character alphanumeric string only.

Access Control Policy

The Access Control Policy field allows you to switch between One Factor Authentication (1FA) which consists of Username  and password authentication OR Two Factor Authentication (2FA) which consists of Username and password AND an additional Timed One Time Password (TOTP) generated on your mobile device for additional security. Two Factor requires the following pre-requisites before enabling:

  • Hermes SEG Outbound E-mail Flow must be working correctly
  • Your User Account must have a valid e-mail address assigned to it
  • You must have an Authenticator app installed on your mobile device such as FreeOTP, Google Authenticator, Authy etc.

Once you set the Access Control Policy to Two Factor and click the Submit button, the system will IMMEDIATELY prompt you to register your first device. Click the Register device link at the bottom of the screen (Figure 1).

Figure 1

image-1635449972196.png

The system will display An email has been sent to your address to complete the process on the upper right-hand corner of the screen (Figure 2).

Figure 2

image-1635450273072.png

Check the mailbox of the e-mail address associated with your account and look for an e-mail that contains the subject Register your mobile and click the Register button at the bottom of the e-mail (Figure 3).

Figure 3

image-1635450744160.png

You will be taken to the Scan QR Code page. Using the Authenticator app you previously downloaded, scan the QR Code from the page and click the DONE button (Figure 4).

Figure 4

image-1635451176940.png

On the following One-Time Password screen enter the passcode generated by your authenticator app (Figure 5).

Figure 5

image-1635452032741.png

If everything went well, you should be able to successfully login to Hermes SEG Administration Console.