Security Settings Guide
Learn how to manage account security, access control, and data protection settings for the GIIP platform.
📋 Overview
The Security Settings define policies to ensure the safety of all users and systems accessing the GIIP platform. By implementing strong authentication and restricting access paths, you protect infrastructure management privileges from external threats.
🔍 Key Security Features
1. Authentication Security
- MFA (Multi-Factor Authentication): Enforce additional authentication via OTP (e.g., Google Authenticator) in addition to username/password.
- Password Policy: Set minimum length, special character requirements, and password rotation intervals (e.g., 90 days).
2. Access Control
- IP Whitelisting: Restrict access to the GIIP management console so it only works from the internal office network or specific VPN IPs.
- Session Timeout: Automatically terminate browser sessions with no activity for a set duration to prevent misuse.
3. Audit Logs
Records the history of all security configuration changes and key administrator action logs. Regularly check the [Audit Logs] tab for any abnormal access attempts.
🛠️ Setup Steps
- Navigate to the GIIP [System Management] > [Security Settings] menu.
- Decide whether to enforce company-wide MFA in the [MFA Setup] tab.
- In the [IP Control] tab, enter the IP ranges (CIDR format supported) to allow and save.
- Administrator re-authentication may be required when [Saving Changes].
💡 Tips
- Principle of Least Privilege: Instead of granting all permissions to every user, grant access only to necessary projects as per the
guide.prjgrouplist - Regular Audits: Periodically check for and delete accounts of former employees or long-unused API Keys (AK/SK).
Version: 1.0 Last Updated: 2026-03-19 Source:
giipv3/public/help/security-settings.en.md