Configuring Local Groups
User groups can be created locally by adding the user groups manually or in bulk or imported from Active Directory (AD) and LDAP. Two Factor Authentication, Device Checks, Geo Location, and Device Updates can be enabled on the group, which will be inherited by the members of each group.
Local user groups can be created based on the functions of the users within it or based on their roles and responsibilities on the ISA web portal. A user can be a member of multiple groups. Only active users can be added to a user group. When a user is suspended after being added as a member of a group, the user is removed from the membership of the group.
User groups offer the advantage of granting access to corporate resources for all group members within an access rule, simplifying access management.
Add User Group
Login to the ISA web console using administrator credentials.
Navigate to the User Groups page under the USERS & GROUPS menu.
Click the Add button at the top.
On the New user group window, configure the following:
Name – Enter a name for the group. The name may contain A-Z, a-z, 0-9, “-“, “_”. The maximum characters must not exceed 70 characters.
Description – Enter a description.
Users – Click the box to select the users from the drop-down list.
Two Factor Authentication – Turn on the toggle button to enable Two Factor Authentication.
Device checks – Turn on the toggle button to enable Device Checks.
Geo Binding – Turn on the toggle button to enable Geo Binding.
Device updates - Turn on the toggle button to enable Device updates. For more information on configuring Device Updates, refer to the KB article Configuring Device Updates.
Click Save and Add new to add the group.
The newly created group is listed on the page.
Supported fields in the file are:
Name: Name for the group. This field must not be blank.
Description: A short description of the group.
User (comma separated): This field must not be blank.
On the User Groups page, click the Add button.
Scroll down the window.
Under Bulk Upload User groups, click Download Sample CSV.
Open the file using a spreadsheet application.
The template file has the following fields.
Enter the group information in the respective fields and save it.
In the Bulk upload User groups window, click Choose File and select the file from local drive.
Click Upload.
In the Uploaded user groups window, review the information and click Save User Group.
The newly created groups are listed on the User Groups page.
Download User Groups List
ISA web portal administrators can download the complete list of users by clicking on the CSV button on the User Group page. An email with the link to download the file in CSV format is sent to the logged-in administrator’s email address. The file has the following information:
Group - Name of the user group.
Type - Whether the group is local, AD, or LDAP
Description – Description of the group.
Member Count – Number of users within the group.
Member Names –Usernames of the users within the group.
ACL Count – The number of access rules with reference to this group.
ACL Names – Name of the access rules.
Two-Factor Authentication – Whether 2FA is enabled for the user.
Device Check – Whether Device Check is enabled for the user.
Geo Binding – Whether Geo Binding is enabled for the user.
- On the Users page, click the CSV button at the top.
- A message that an email is scheduled to be sent to the administrator’s email address is displayed.
- Click the download link within the email.
- View the file in a spreadsheet application.
On the User Groups page, click the name of the user group.
In the Group details window, click the Edit button.
You can add or remove users from within this window. You can also enable or disable the options available on this window. After making the changes, click Update at the bottom.
Enable the check box alongside the group you wish to delete.
Click the Delete button at the top.
On the pop-up window, click Yes, Delete it!.
On the bottom left, a Group deleted successfully message is displayed.
Click the drop-down box to select the number of groups to be displayed on the User and Groups page. By default, it is set to display 10 groups. You can change it to display either 30 or 50 groups.
Click the Next button to view the next page of groups. Click the Prev button to view the previous page.
Related Articles
Configuring Local Users
This user guide describes the various configuration options to manage users on the ISA web portal. The Users page on the ISA web portal allows administrators to create and maintain a database of users that either connect remotely using the ISA User ...Configuring Application Groups
Application groups are pairing of IP addresses or network IDs and application services. More than one pairing can be configured within each group. Once defined, the groups are referenced in access rules. The following types of pairings can be created ...Configuring Access Rules
The Access Rules page on the ISA web portal allows administrators to define rules to allow or deny remote user access to corporate resources. referenced in access rules. The following types of access rules can be created: Allow or deny access to an ...Configuring Two-Factor Authentication
Two-Factor Authentication (TFA) adds one more layer of security to the ISA User Agent connection process, in addition to the username-password and certificate method of authentication. When TFA is enabled for a user or user group, the User Agent is ...Configuring Microsoft Active Directory (AD) Integration on the ISA Web Console
Microsoft Active Directory (AD): Microsoft Active Directory (AD) is a directory service developed by Microsoft for Windows domain networks. It provides authentication and authorization mechanisms, as well as a framework for organizing and managing ...