Account Settings

You are able to control system-wide settings from the Account tab in the Preferences section of the My Account page. From here you can update the notifications about your ExaVault account as well as security settings.

To access settings for your account:

1. Log in to your ExaVault account as an admin.

2. Click on the My Account (gear icon) option from the left navigation bar.

3. Click on the Account tab on the Preferences page.

Notifications

Your ExaVault account has settings that trigger email notifications to alert you when your activity approaches specific account limits.

• You must be logged in as a user with admin permissions to change these settings.
• The notification(s) will be sent to the email address assigned to the master user on the account.

Enabling Storage and/or Transaction usage notifications will inform you when you need to take action to prevent your account from encountering interruptions.

Enable/Disable Storage Notifications

1. Log in as an admin user in the ExaVault web interface.

2. Click on the My Account (gear icon)button on the left navigation bar.

3. Click the Account tab.

4. Under Storage, check to enable (or uncheck to disable) the box next to “Notify me when my account's storage is approaching its limit.”

5. Set the storage threshold from the drop-down box.

6. Click the SAVE button.

Troubleshooting When Storage Notification Received

If your account exceeds your storage quota, you will no longer be able to upload new files to the account until the total storage is back below your quota. Here are some steps to decrease your storage when the notification is received:

• The quickest solution is to delete files that are no longer needed in your storage.
• By using the activity log, you can review account activity to confirm if there is any duplicate data or unexpected uploads happening.
• If there is unexpected or problematic upload behavior from a specific username, you may consider locking the user until a solution is found.
• If there are no files that can be removed, you may need to consider upgrading your account space.

Enable/Disable Transaction Usage Notifications

1. Log in as an admin user in the ExaVault web interface.

2. Click on the My Account (gear icon)button on the left navigation bar.

3. Click the Account tab.

4. Under Transactions usage, check to enable (or uncheck to disable) the box next to “Email me when my account's transactions usage is approaching its limit.”

5. Set the storage threshold from the drop-down box.

6. Click the SAVE button.

Troubleshooting When Transaction Notification Received

If your account exceeds your daily transaction quota, connections will queue actions and login attempts may fail until the account falls back under the daily limit. Here are some steps to correct transactions when the notification is received:

• Review our Daily Transaction Limit page to review more information on how transactions are calculated and additional troubleshooting advice.
• If you are unable to decrease transactions, contact ExaVault support for more information or review the Daily Transaction Limit page to determine if upgrading your account is necessary.

Enabling Secure Only Mode (SFTP or HTTPS)

The secure only mode for your account disables connections through traditional FTP. Your users will still be able to connect through SFTP and the ExaVault web interface, which uses HTTPS. This setting makes sure that all data transfers are encrypted.

This setting applies to all of your users; there is no way to require only one user to always connect through a secure method.

To enable secure connections only:

1. Log in as an admin user in ExaVault web interface.

2. Click the My Account (gear icon) on the left navigation bar.

3. Click the Account tab.

4. Under System Security Options, check the box next Only allow connections via SFTP and App (HTTPS).

5. Click the SAVE button at the bottom of the screen.

Your settings will take effect immediately. If you have just turned the setting on, users already connected through FTP will not be disconnected, but they will no longer be able to transfer files.

Enforce Complex Passwords

By setting the option to enforce complex passwords, you require any new passwords for your users to follow these rules:

• The password must be at least 8 characters long
• The password must contain at least 1 uppercase letter
• The password must contain at least 1 lowercase letter
• The password must contain at least 1 number (0 through 9)

To update your setting:

1. Log in as an admin user in ExaVault file manager.

2. Click the My Account (gear icon) on the left navigation bar.

3. Click the Account tab.

4. Under System Security Options, check the box next All passwords must be at least eight (8) characters, have at least one capital letter, one lowercase letter and one number.

6. Click the SAVE button at the bottom of the screen.

Turning the setting for complex passwords on will not “expire” or invalidate any existing users' passwords. The setting only applies when a user's password is updated or when a new user is created.

Account IP Restrictions

If you need to make sure that people are only accessing your account from specific locations, you can define allowable IP address ranges. If IP ranges are defined, when a user tries to log in, their current IP address will be checked against the list of allowed IP address ranges. If the user's IP address is not in the range, the user will be unable to connect to your ExaVault account. Remember that:

1. All traffic from the IP address is blocked if it's not in the whitelist (both FTP and HTTPS)

2. The settings are account wide and not per-user. If there are any addresses listed, all addresses connecting to the account will be checked against the list.

Adding an IP Range

To update your allowable IP address ranges:

1. Log in as an admin user in ExaVault file manager.

2. Click the My Account (gear icon) on the left navigation bar.

3. Click the Account tab.

4. Under Account IP Restrictions, enter the Start of IP Range and End of IP Range into the fields. This can be a range or a single IP address. For example:

• IP Range: Start = 67.208.64.228, End = 67.208.64.254
• Single IP: Start = 67.208.64.228, End = 67.208.64.228

5. Add an IP Range Note to help review and manage your ranges in the future.

6. Click the ADD RANGE button.

The newly added range will be automatically saved an applied.

Managing Existing IP Ranges

1. Log in as an admin user in ExaVault file manager.

2. Click the My Account (gear icon) on the left navigation bar.

3. Click the Account tab.

4. Under Account IP Restrictions, click the Manage IP List (#) link.

5. On the pop-up, you can:

• Update the note by typing in a new message.
• Remove access for the IP Range by clicking the Trash Can icon.

6. Click the X in the window when finished.

Require MFA for All Users

To enforce additional security, you have the option to require all users to enable Multi-Factor Authentication (MFA) when connecting to your ExaVault account. When enabled, every time your users attempt to connect to your ExaVault storage, you will be required to enter a 6-digit number to confirm your identity by the method selected.

When this setting is enabled, your customers will be prompted to complete the MFA setup the next time the log in.

To require MFA for all users:

1. Log in as an admin user in ExaVault file manager.

2. Click the My Account (gear icon) on the left navigation bar.

3. Click the Account tab.

4. Under Require MFA for All Users, check the box Require all users to authenticate with MFA token (or deselect to disable).

5. On the window that appears, you can check the box Send info email to users to inform your current users of this change or eave the box unselected to skip sending the email. Click OK to continue.

6. Use the dropdown to select what type of authentication method you want to enforce:

• Application: To use an authenticator application, your users will need to download an application to their phone to generate the 6-digit number when connecting with your ExaVault account. We recommend Google Authenticator or Authy but any app supporting TOTP protocol will work if you already have an authenticator app.
• SMS: Short Messaging Service (SMS) will send the 6-digit code texted directly to the phone number your user enters when setting up MFA. Select this option if you want your users to receive a text each time they attempt to connect instead of using an application.

7. Check the box Allow S/FTP users to bypass MFA authentication if you do not want to require MFA when users are connecting with tools other than the web application. Additional Notes:

• Direct connections with your account using an FTP or SFTP will require that you reenter your username and password with the verification code appended to your password in order to authenticate. For example: Initial Login: Username (my_user) + Password (pa$$word), Second Authentication Login: Username (my_user) + PasswordVerificationCode (pa$$word123456)
• If your user(s) are using SSH Keys, they will not be required to use MFA when connecting regardless of this setting.

8. Click SAVE to apply your MFA settings.

Other Options

Check the box Enable onboarding overlay for your users if you want to provide your users with tutorials when they first access their account. This will provide helpful tips for new users. Uncheck this box if you do not want this information provided for users.

Click SAVE to update your onboarding settings.