Security Configuration

The Security Configuration panel displays and changes the security configuration of Royal Server.

Show or Activate the Service Configuration Panel

In The Royal Server Console Navigation Bar, click on the Royal Server group and then on the Security Configuration entry.

Note

Any change in this panel requires a restart of Royal Server.

Features

Require Authentication

If checked, Royal Server is only accepting authenticated requests. Using this setting, Royal Server objects in Royal TS need to be configured with a Credential. Royal Server only accepts user accounts that are in the local Windows group 'Royal Server Users' (these can also be accounts or groups from the Windows domain the server belongs to). If the specified credential is not member of this group, Royal Server will return an authentication error.

Note

Additionally, Royal Server accepts requests from members of the 'Royal Server Administrators' and 'Administrators' group as well as requests that use the Worker Account.

Block IPs After Unsuccessful Login Attempts

In order to prevent brute force attacks on Royal Server, this setting blocks IPs that issue unsuccessful authentication requests. For example, block an IP for 5 minutes if it issues 4 unsuccessful requests within 3 minutes.

Blocking time (in minutes)

Specifies the time an IP is blocked after it tries to log on too many times unsuccessfully.

Number of attempts

Specifies the number of failed attempts after which an IP is blocked for the specified amount of time.

Time frame (in minutes)

Only failed login attempts within this time frame are relevant for the IP blocking.

Note

The blocked requests will be logged.