Security Options

Overview

The Security Options in EMC allow administrators to control who can access the system and from where. These settings let you restrict login access based on approved devices (browsers) and specific IP addresses, improving system security and preventing unauthorized access.

Security Options controll which users can log in using specific devices and IP addresses. You can enforce browser verification so users must have a browser / device approved by management. You can also limit EMC access to specific IP Addresses to controll the location of EMC access.

~~These security settings~~ can be ~~controlled~~applied at 3three ~~different levels~~levels:

Group (Everyone)
Store
User

~~The Security Options~~Settings can ~~also~~ be stacked based on ~~Priority.~~priority. ~~e.g.~~For ~~You~~example, ~~can~~you ~~set~~may configure an IP ~~Whitelist~~whitelist ~~for~~at ~~each~~the ~~store,~~store level, and then ~~setup additional IP Whitelist,~~override or ~~remove~~refine ~~the~~that IPwhitelist ~~Whitelist~~for ~~restriction~~individual byusers ~~specific~~as ~~user.~~required.

Accessing Security Options

To ~~Configure~~configure security settings for a ~~Users~~user:

~~Security~~

~~Options~~

Navigate goin EMC to ~~the~~ Settings > Security Options

~~section then click on~~

Open the Users tab.

Search for the ~~User~~user ~~and~~whose itsettings you want to update.

You will ~~show~~see ~~you~~fields ~~some~~showing: ~~details~~
1. Login ~~Mode,~~Mode
2. Approved ~~Browsers,~~Browsers
3. Denied Browsers
4. Browsers ~~browsers~~Awaiting ~~Wairing~~Approval
If

~~you click on~~

Click the Login Mode itfield ~~will~~to open ~~the~~that ~~user'~~user’s ~~settings~~detailed ~~section.~~
security configuration.

Browser Verification

~~If you want to enable Browser Verification, select the option "Browser must be verified". This will enable a few additional settings that can be configured. When~~ Browser Verification isensures ~~enabled,~~users ~~when~~can ~~the~~only log in from approved browsers/devices.

How It Works

When a user ~~tries~~attempts to log ~~into~~in ~~EMC for the first time on~~from a new PCbrowser or device:
- EMC sends an email ~~will be sent~~ to a designated ~~email~~approver ~~address~~asking ~~requesting~~for approval.
- Once ~~Approved,~~approved, ~~the~~that ~~PC/browser combination~~browser/device is ~~stored in EMC~~saved and can be used infor ~~the~~future ~~future.~~
  logins.

Users can ~~give~~optionally ~~the~~be ~~user the ability~~allowed to self-verify their own ~~browsers~~browser ~~with~~(if ~~Self~~they ~~verification.~~have email access). This isreduces ~~useful~~admin ifoverhead.

Enabling Browser Verification

In the ~~user~~user’s ~~has~~security ~~access~~settings, enable Browser must be verified
Additional browser settings will appear.

Save changes.

Common use cases:

Limit logins to ~~their~~company-owned ~~own~~devices ~~email~~only.

~~account.~~

Require admin verification for any new login device.

IP Whitelist

Whitelisting

~~To set an~~ IP ~~Whitelist~~Whitelisting ~~enter~~restricts ~~the~~access IPto ~~address~~EMC inbased ~~the~~on ~~IP Start field. Give it a short description in the Comment field. Then click Insert.~~

~~There are many sites that can provide your~~specific public IP ~~Address. Here is a common one~~ ~~https://whatismyipaddress.com/~~addresses.

How to Set Up an IP Whitelist

In the IP Whitelist section for a user, store, or group:

Enter the IP Start address.

Add a descriptive Comment.

Click Insert to save the IP entry.

~~These~~Tip: Use a service such as whatismyipaddress.com to discover the public IP address you wish to whitelist.

Notes

IP Whitelist entries apply at the selected security level (User, Store, or Group).

You can add multiple IPs if users connect from different locations.

Entries can be modified or deleted at any time.

Security Option Priority and Layering

Security settings are evaluated in the ~~same~~following order:

User-specific settings

Store-level settings

Group (Everyone) settings

A stricter user security rule (e.g., an IP whitelist for ~~Users,~~one ~~Stores~~user) ~~and~~will ~~Group.~~override broader store-level restrictions if configured.

Example scenarios:

A store may allow access from a corporate office IP range.

A specific user might be restricted further to only one IP (e.g., their home office).

Browser verification may be enabled for all users but disabled for specific trusted users.

Summary of Key Security Controls

Security Feature	Purpose
Browser Verification	Ensure only approved decives can log in
IP Whitelisting	Restricts access to specific IP addresses.
Layered Settings	Allows flexible security at group, store or user levels.

Best Practices

✔ Use IP Whitelisting for high-security environments.
✔ Enable Browser Verification for users accessing on mobile devices with no fixed public IP Address.
✔ Review security settings periodically to ensure they match your current access needs.