Manage Your Organization

The Organization option enables Nexploit administrators to manage organization-level settings and policies

View the Organization Dashboard

To view your organization dashboard, in the left pane, select the Organization option.

Configure Two-Factor Authentication Policy

You can require that all users in your organization use two-factor authentication (2FA). Before applying this policy, we recommend giving your users prior notice so that they have time to enable 2FA for their accounts.

To apply 2FA to user accounts, select the relevant checkbox in the ORGANIZATION SETTINGS section.

An administrator can see the 2FA status of each user in the organization in the MEMBERS section.

📘

Note

An organization-wide 2FA policy cannot be set to mandatory until all the administrative users have set up their own 2FA.
When enabling an organization-wide 2FA policy, the users can access their accounts only after they perform 2FA. In this case, an email notification is automatically sent to each affected user.

Define the Hosts Authorized for Scanning

As a precaution, Nexploit only allows hosts that are in the authorized list defined below to be scanned.

To add a target host to the authorized list of hosts, follow these steps:

  1. Add a .nex file to your application root directory. To obtain this file, click the .nex link at the bottom of the ORGANIZATION SETTINGS section.
  1. Save this file in a convenient place and then put it in your application root directory.

📘

Note

Make sure that the server can serve this file from the webroot (top directory level or just / path) along with the other static resources from that location.

You can reuse this file as many times as needed.

View Your Organization Plan

The organization PLAN DETAILS section displays information about your Nexploit account, for example total storage for your organization, number of engines and the plan expiration date.

Manage Organization API/CLI Authentication Tokens

On the Organization page, you can obtain and manage authentication tokens (also called API keys) for accessing the Nexploit API and CLI.

To create a new API/CLI authentication token (API key), follow these steps:

  1. Go to the MANAGE YOUR ORGANIZATION API KEYS section and click + Create API key .
  1. Assign the API key a name, select which scope(s) of access to allow it and which type of actions (such as read or write) it is permitted to perform.
  1. Click Create.
    On the popup, copy the generated key and save it to a safe place since as soon as you navigate away from this popup, you will not be able to restore this key.
    The created keys without the entire values are listed in the MANAGE YOUR ORGANIZATION API KEYS section.

Did this page help you?