Synology DS720 Synology NAS Users Guide - Based on DSM 7.1 - Page 51

Security, 8.1 Security settings, 8.2 Secure SignIn

Get Synology DS720 PDF manuals and user guides View all Synology DS720 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 51 highlights

Chapter 8: Security Chapter 8: Security 8.1 Security settings Protect your Synology NAS from unauthorized logins with firewall rules, Auto Block, and Account Protection from the Control Panel. Proper firewall settings let you control which IP addresses or services have access to DSM. The Auto Block and Account Protection features help make sure that your Synology NAS is safe from brute-force attacks. They block IP addresses or DSM accounts with too many failed login attempts within a specified period. When there are attempts to sign in to your NAS or its services from a specific IP with random username/password combinations, Auto Block prevents users of that IP address from gaining access to the NAS. Account Protection works the same way but focuses on individual accounts, blocking users' access to specific accounts. Certificates from Let's Encrypt or other certificate authorities help secure connections to and from DSM. When you connect to DSM through a web browser, certificates encrypt the information sent between DSM and the browser to prevent any possible information interception. Security settings can be configured in Control Panel > Security. To learn more about these settings respectively, refer to the following articles: Firewall, Protection, and Certificate. 8.2 Secure SignIn Secure SignIn Service is aimed at improving the overall security of DSM accounts while offering easy-to-use and flexible login options. With the use of a single-tap prompt (Approve signin) or a hardware security key, you can sign in without the fuss of manually typing in the password. To further safeguard your account, enable the 2-factor authentication option. After entering the password, as the second step of identity verification, select from either onetime verification codes (OTP), Approve sign-in, or hardware security key for a seamless login experience. Synology offers a mobile authenticator app, Synology Secure SignIn, for approving sign-in requests and receiving OTP codes. To learn more about sign-in methods and 2-factor authentication, refer to the articles under Sign-In Methods. 48

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
48
Chapter 8: Security
8.1 Security settings
Protect your Synology NAS from unauthorized logins with firewall rules, Auto Block, and
Account Protection from the Control Panel. Proper firewall settings let you control which IP
addresses or services have access to DSM.
The Auto Block and Account Protection features help make sure that your Synology NAS is
safe from brute-force attacks. They block IP addresses or DSM accounts with too many failed
login attempts within a specified period. When there are attempts to sign in to your NAS or
its services from a specific IP with random username/password combinations, Auto Block
prevents users of that IP address from gaining access to the NAS. Account Protection works
the same way but focuses on individual accounts, blocking users' access to specific accounts.
Certificates from Let's Encrypt or other certificate authorities help secure connections to
and from DSM. When you connect to DSM through a web browser, certificates encrypt
the information sent between DSM and the browser to prevent any possible information
interception.
Security settings can be configured in
Control Panel
>
Security
. To learn more about these
settings respectively, refer to the following articles:
Firewall
,
Protection
, and
Certificate
.
8.2 Secure SignIn
Secure SignIn Service is aimed at improving the overall security of DSM accounts while offering
easy-to-use and flexible login options. With the use of a single-tap prompt (Approve sign-
in) or a hardware security key, you can sign in without the fuss of manually typing in the
password. To further safeguard your account, enable the 2-factor authentication option. After
entering the password, as the second step of identity verification, select from either one-
time verification codes (OTP), Approve sign-in, or hardware security key for a seamless login
experience.
Synology offers a mobile authenticator app, Synology Secure SignIn, for approving sign-in
requests and receiving OTP codes.
To learn more about sign-in methods and 2-factor authentication, refer to the articles under
Sign-In Methods
.
Chapter 8: Security