Jump to Content
Umbrella for Government SIG User Guide
Guides
ProductDeveloperUmbrella for Government SIG User Guide
Guides
ProductDeveloper
Manage Authentication

Cisco Umbrella for Government SIG User Guide

  • Welcome to Cisco Umbrella for Government
    • Start Protecting Your Systems
    • Find Your Organization ID
    • Determine Your Current Package
    • Umbrella Policies Overview
    • Contact Umbrella Support
  • Get Started
    • Set Up DNS-Layer Security
    • Point Your DNS to Cisco Umbrella
    • Set Up Web Security
    • Configure the Secure Web Gateway
  • Limitations and Range Limits
    • Data Retention
    • Average Bandwidth
  • Manage Identities
    • Add a Network Identity
    • Delete a Network Identity
    • Identity and SIG Deployment
    • Find the Total Number of Identities in Your Organization
  • Manage Domains
    • Add Internal Domains
    • Add External Domains and IPs
    • Bulk Upload External Domains and IPs
    • Wildcards and Domain Management
  • Manage DNS Policies
    • Add a DNS Policy
    • Test a DNS Policy
    • DNS Policy Settings
    • DNS Policy Precedence
    • Best Practices for DNS Policies
    • Enable SafeSearch for DNS Policies
    • Group Roaming Computers with Tags
  • Manage the Web Policy
    • Add a Ruleset to the Web Policy
    • Add Rules to a Ruleset
    • Test the Web Policy
    • Web Policy Precedence
    • Best Practices for the Web Policy and Rulesets
    • Manage Global Settings
    • Confirm SafeSearch for a Web Policy Ruleset
    • Understand Isolated Destinations
    • Monitor Bandwidth Usage in the App Discovery Report
  • Manage the Data Loss Prevention Policy
    • Add a Real Time Rule to the Data Loss Prevention Policy
    • Understand Exclusions in a Real Time Rule
    • Supported Applications
    • Add a SaaS API Rule to the Data Loss Prevention Policy
    • Discovery Scan
    • Edit a Data Loss Prevention Rule
    • Delete a Data Loss Prevention Rule
    • Enable or Disable a Data Loss Prevention Rule
    • Supported File and Form Types
  • Manage the Firewall Policy
    • Add a Firewall Rule
    • Delete a Firewall Rule
    • Configure IPS Settings for Firewall Policy
    • Change a Firewall Priority
    • Monitor Hit Count
    • Edit Hit Count
    • Review Firewall Logs in Reports
    • Check Protocol of Web Traffic
  • Manage IPS
    • Add a Custom Signature List
    • Delete a Custom Signature List
    • Reset a Signature's Action
  • Manage Security Settings
    • Add a DNS Security Setting
    • Add a Web Security Setting
    • DNS Security Categories
    • Web Security Categories
  • Manage Content Categories
    • Add a DNS Content Category Setting
    • DNS Content Categories
    • DNS Content Category Changes
    • Add a Web Content Category Setting
    • Web Content Categories
    • Web Content Category Name Changes
    • View Content Categories in Reports
  • Manage Data Classifications
    • Create a Data Classification
    • Copy and Customize a Built-In Data Classification
    • Delete or Edit a Classification
    • Create an Exact Data Match Identifier
    • Index Data for an EDM
    • Exact Data Match Field Types
    • Built-In Data Classifications
  • Built-In Data Identifiers
    • Copy and Customize a Data Identifier
    • Create a Custom Identifier
    • Custom Regular Expression Patterns
    • Individual Data Identifiers
  • Manage Application Settings
    • Add a DNS Application Setting
    • Add a Web Application Setting
    • Delete an Application Setting
    • Application Categories
    • Manage Advanced App Controls
  • Manage Tenant Controls
    • Add a Tenant Controls Setting
    • Control Cloud Access to Microsoft 365
    • Control Cloud Access to Google G Suite
    • Control Cloud Access to Slack
    • Control Cloud Access to Dropbox
    • Review Tenant Controls Through Reports
  • Manage Destination Lists
    • Add a DNS Destination List
    • Add a Web Destination List
    • Edit a Destination List
    • Add Destinations in Bulk
    • Download Destinations to a CSV File
    • Control Access to Custom URLs
    • Wildcards and Destination Lists
    • Add Top-Level Domains To Destination Lists
    • Add Punycode Domain Name to Destination List
    • Test Your Destinations
    • Troubleshoot DNS Destination Lists
  • Manage File Type Control
    • Enable File Type Control
    • File Types to Block
    • Review File Type Controls Through Reports
  • Manage Selective Decryption
    • Add a Web Selective Decryption List
  • Manage Schedule Settings for the Web Policy
    • Add a New Schedule Setting for the Web Policy
  • Manage Certificates
    • Install the Cisco Umbrella Root Certificate
    • Add Customer CA Signed Root Certificate
    • Delete Customer CA Signed Root Certificate
    • View Cisco Trusted Root Store
  • Manage Umbrella's PAC File
    • Deploy Umbrella's PAC File for Windows
    • Deploy Umbrella's PAC File for Mac
    • Customize Umbrella's PAC File
  • Manage Proxy Chaining
    • Forwarded-For (XFF) Configuration
  • Customize Block and Warn Pages
    • Create a Custom Block Page
    • Create a Custom Warn Page
    • Allow Users to Contact an Administrator
    • Add a Custom Logo
    • Redirect to a Custom Block Page
    • Block Page IP Addresses
  • Network Tunnel Group Configuration
  • Manage Accounts
    • Add a New Account
    • Delete an Account
    • Change Account Settings
    • Hide Identities with De-identification
  • Manage User Roles
    • Add a New User
    • Add a Custom User Role
  • Manage API Keys
    • Add Umbrella API Keys
    • Add Static API Keys
    • Add KeyAdmin API Keys
  • Manage Your Logs
    • Upgrade Reports
    • Enable Logging to Your Own S3 Bucket
    • Stop Logging
    • Log Formats and Versioning
  • Manage Authentication
    • Enable Two-Step Verification
    • Disable Two-Step Verification
    • Enable Cisco Security Cloud Sign On
    • Disable Cisco Security Cloud Sign On
    • Get Started with Single Sign-On
    • Enable SSO with Duo
    • Enable SSO with PingID
    • Enable SSO with Okta
    • Enable SSO with OneLogin
    • Enable SSO with Azure
    • Enable SSO with Other IDPs
  • Manage Cloud Malware Protection
    • Enable Cloud Malware Protection
    • Revoke Authorization for a Platform
    • Enable Cloud Malware Protection for Dropbox Tenants
    • Enable Cloud Malware Protection for Box Tenants
    • Enable Cloud Malware Protection for Microsoft 365 Tenants
    • Enable Cloud Malware Protection for Webex Teams Tenants
    • Enable Cloud Malware Protection for Google Drive
  • Manage SaaS API Data Loss Prevention
    • Enable SaaS API Data Loss Protection for Box Tenants
    • Enable SaaS API Data Loss Protection for Dropbox Tenants
    • Enable SaaS API Data Loss Protection for Google Drive Tenants
    • Enable SaaS API Data Loss Protection for Webex Teams Tenants
    • Enable SaaS API Data Loss Protection for Microsoft 365 Tenants

Identity Integrations

  • Introduction
  • Configure SAML Integrations
    • Prerequisites
    • SAML Certificate Renewal Options
    • Configure Azure AD for SAML
    • Configure Okta for SAML
    • Configure AD FS for SAML
    • Configure Duo Security for Cisco Umbrella SAML
    • Configure PingID for SAML
    • Configure OpenAM for SAML
    • Configure Other IdPs for SAML
    • Enable IP Surrogates for SAML
    • Configure SAML for Multiple EntityIDs
  • Provision Identities from Active Directory
    • Prerequisites
    • Connect Multiple Active Directory Domains to Umbrella
    • Connect Active Directory to Umbrella to Provision Users and Groups
    • Change the Connector Account Password
    • Communication Flow and Troubleshooting
  • Provision Identities Through Manual Import
  • Provision Identities from Azure AD
  • Provision Identities from Okta
  • Active Directory Integration with Virtual Appliances
    • Prerequisites
    • Active Directory User Exceptions
    • Prepare Your Active Directory Environment
    • Connect Active Directory to Umbrella VAs
    • Multiple Active Directory and Umbrella Sites
    • Change the Connector Account Password
    • Communication Flow and Troubleshooting

Reports

  • Get Started with Reports
    • Export Report Data to CSV
    • Bookmark and Share Reports
    • Report Retention
  • Schedule Reports
    • Schedule a Report
    • Update a Scheduled Report
  • Overview Report
  • Security Activity Report
    • View Activity and Details by Filters
    • View Activity and Details by Event Type or Security Category
    • View an Event's Details
    • Search for Security Activity
  • Activity Search Report
    • Use Search and Advanced Search
  • App Discovery Report
    • View the Highest Risk Apps
    • Review Apps in the Apps Grid
    • View App Details
    • Control Apps
    • Advanced App Controls
    • View Traffic Data Through SWG
    • View CDFW Events
  • Top Threats Report
    • Threat Type Details
    • Threat Type Definitions
  • Total Requests Report
  • Activity Volume Report
  • Top Destinations Report
    • Destination Details
  • Top Categories Report
    • Category Details
  • Top Identities Report
    • Identity Details
  • Admin Audit Log Report
    • Export Admin Audit Log Report to an S3 Bucket
  • Cloud Malware Report
  • Data Loss Prevention Report

Umbrella Roaming Security: Cisco Secure Client

  • Introduction
  • Frequently Asked Questions
  • Secure Umbrella Roaming: Cisco Secure Client (Formerly AnyConnect)
    • Quick Start Guide
    • Prerequisites
    • Before You Begin
    • Deploy Umbrella for Cisco Secure Client
    • Meraki Systems Manager (SM) Deployment
    • Enable the Umbrella SWG Agent
    • Install the Root Certificate
    • IPv4 DNS Protection Status
    • Interpret Diagnostics
    • Customize Windows Installation of Cisco Secure Client
    • Customize macOS Installation of Cisco Secure Client
  • Active Directory Policy Enforcement and Identities
  • Virtual Appliances
  • Domain Management
  • Configure Protected Networks for Roaming Computers

Manage Virtual Appliance

  • Introduction
    • Prerequisites
    • Deployment Guidelines
    • Importance of Running Two VAs
  • Deploy Virtual Appliances
    • Deploy VAs in Hyper-V for Windows 2012 or Higher
    • Deploy VAs in VMware
    • Deploy VAs in Microsoft Azure
    • Deploy VAs in Amazon Web Services
    • Deploy VAs in Google Cloud Platform
    • Deploy VAs in KVM
    • Deploy VAs in Nutanix
  • Configure Virtual Appliances
  • Local DNS Forwarding
  • Reroute DNS
  • Update Virtual Appliances
  • Virtual Appliance Sizing Guide
  • SNMP Monitoring
  • Troubleshoot Virtual Appliances
  • Other Configurations

Sites and Internal Networks

  • Internal Networks Setup Guide
  • Provision a Subnet for Your Virtual Appliance
  • Manage Sites
  • Manage Internal Networks
  • Assign a DNS Policy to Your Site

Managed iOS Device

  • Cisco Security Connector: Umbrella Setup Guide
    • Quick Start
  • Register an iOS Device Through Apple Configurator 2
  • IBM MaaS360 Registration
  • Intune Registration
  • Jamf Registration
  • MobiConnect Registration
  • MobileIron Registration
    • MobileIron Configuration
  • Workspace ONE Registration
  • Register an iOS Device Through a Generic MDM System
  • Apply a DNS Policy to Your Mobile Device
    • Umbrella Reporting
  • Add User Identity for Cisco Security Connector
  • Anonymize Devices
  • Export Device Data to CSV
  • Troubleshooting
  • Push the Umbrella Certificate to Devices
  • Configure Cellular and Wifi Domains

Managed Android Device

  • Cisco Secure Client (Android OS)
  • Deploy the Android Client
    • Android Configuration Download
    • Cisco Meraki MDM
    • MobileIron MDM
    • VMware Workspace ONE
    • Microsoft Intune MDM
    • Samsung Knox MDM
    • Push the Umbrella Certificate to Devices
  • Manage Identities
  • Export Device Data to CSV
  • Troubleshooting
  • Frequently Asked Questions

Cisco Security for Chromebook Client

  • Get Started
  • Prerequisites
  • Limitations
  • Google Workspace Identity Service
  • Integrate Google Workspace Identities
  • Deploy the Chromebook Client
    • Bypass Internal Domains from DNS-over-HTTPS (DoH)
    • Enable Reporting for Private IP Address of Chromebook Device
    • Export Device Data to CSV
    • Verify and Debug
  • Protection Status
  • Chromebook-Specific DNS Policy
  • Chromebook-Specific Web Policy
  • Chromebook Client - FAQs
  • Google Workspace Identity Service FAQs

Manage Authentication

Suggest Edits

You can manage how administrators log into your Umbrella dashboard. You can use two-step verification, single sign-on, or enable two-step verification in the SSO IdP.

We recommend using Duo for both SSO and two-step verification.


Log Format and Versioning < Manage Authentication > Enable Two-Step Verification

Updated about 3 years ago