Arctera™ Insight Management Console Help

Last Published:
Product(s): Veritas Alta eDiscovery (1.0)
  1. Getting started
    1.  
      About Arctera Insight Management Console
    2.  
      Prerequisites for using Arctera Insight Management Console
    3.  
      Arctera Insight Management Console web browser support
    4.  
      What's new in this release
    5.  
      Signing in to Arctera Insight Management Console
    6.  
      Signing out from Arctera Insight Management Console
    7.  
      Resetting a forgotten password
    8.  
      Changing your profile password
  2. Archive Overview
    1. About Archive Overview
      1.  
        Archive Usage
      2.  
        Sync Activity
      3.  
        Roles
    2.  
      Viewing the Archive Usage Snapshot report
  3. Working with Dashboard
    1.  
      About dashboard
    2.  
      Monitoring a status of active archives
    3.  
      Monitoring storage consumption
    4.  
      Monitoring a status of Insight Capture collectors activities
    5.  
      Monitoring a status of transcription service usage
  4. Managing Configurations
    1.  
      About the Configuration page
    2.  
      Viewing provisioned services
    3.  
      Selecting options to provision and manage user accounts
    4. About Provisioning
      1.  
        Configuring the Insight Personal Archive deployment options
      2.  
        Configuring the administrator notification options
    5.  
      CloudLink Sync Summary
    6. About Managed Tags
      1.  
        Creating a managed tag
      2.  
        Assigning a managed tag to users
      3.  
        Changing the retention policy associated with a managed tag
      4.  
        Deleting a managed tag
    7. About Account Management
      1.  
        Searching for archive accounts
      2.  
        Using search filters
      3.  
        Creating an archive account
      4.  
        Viewing and editing the archive account details
      5.  
        About the Account Details page
      6.  
        Editing an archive account
      7.  
        Deleting an archive account
      8.  
        Deploying users
      9.  
        Enabling services for existing archive accounts
      10.  
        Configuring the MYOK feature
      11.  
        Removing user access
      12.  
        Disabling bulk user accounts
      13.  
        Editing Mobile Web Access permission for existing archive accounts
      14.  
        Unlocking an archive account
      15.  
        Exporting archive account information
      16.  
        Editing contact details of a system administrator
  5. Managing Archive Collectors
    1.  
      About Archive Collectors
    2.  
      Adding new archive collectors
    3.  
      Updating configuration of existing archive collectors
    4.  
      Stopping or restarting import job of archive collectors
    5.  
      Viewing the latest status of Archive Collectors
    6.  
      Cloning archive collectors
    7.  
      Deleting an existing archive collector
    8.  
      Deleting a history of archive collectors
    9. About Exchange Online Archiving
      1.  
        Setting up modern authentication in Azure AD for Exchange Online sync
      2.  
        Configuring Exchange Online sync
      3.  
        About Exchange Online folder synchronization
      4.  
        Prerequisite for migrating Exchange Online Users configured with Folder Sync to Exchange Online Folder Synchronization
      5.  
        Configuring Exchange Online folder synchronization
      6.  
        Configuring Microsoft Azure Active Directory Group synchronization
    10.  
      About Bloomberg Archiving
    11. About Google Chat Archiving
      1.  
        Configuring Google Chat Archiving
    12. About Google Workspace Archiving
      1.  
        Configuring Google Workspace for SAML and SSO authentication to your custom SAML app
      2.  
        Enabling the Google Workspace service
      3.  
        Configuring Google Workspace Archiving Collector
    13. About SCIM Archiving
      1.  
        Configuring SCIM collectors by using SCIM provisioning
      2.  
        Configuring SCIM archiving by using MS Office 365
    14. About Import Collector
      1.  
        Configuring an Import collector
    15. About Insight Capture Services Archiving
      1.  
        Enabling Insight Capture Services for Archiving
      2.  
        Configuring Capture Services for Archiving
    16. About Audio-Video Archiving
      1.  
        Configuring audio-video archiving collectors
    17. About Audio-Video Archiving using NTR-X Collectors
      1.  
        Configuring audio-video archiving using NTR-X collectors
    18. About Dubber Speik SMS Archiving
      1.  
        Configuring Dubber Speik SMS archiving collectors
    19. About Dubber Speik Recordings Archiving
      1.  
        Configuring Dubber Speik Recordings archive collectors
    20. About Text-Delimited Archiving
      1.  
        Configuring Text-Delimited archiving collectors
    21. About XSLT-XML Archiving
      1.  
        Configuring XSLT-XML archiving collectors
    22. About JSON Archiving
      1.  
        Configuring JSON archiving collectors
    23. About iMessage Archiving
      1.  
        Configuring iMessage archiving collectors
    24. About LinkedIn Archiving
      1.  
        Configuring LinkedIn archiving collectors
    25. About Signal Archiving
      1.  
        Configuring Signal archiving collectors
    26. About Verint Archiving
      1.  
        Configuring Verint archiving collectors
    27. About WeChat Archiving
      1.  
        Configuring WeChat archiving collectors
    28. About WhatsApp Archiving
      1.  
        Configuring WhatsApp archiving collectors
  6. Managing Roles and Permissions
    1.  
      About Role Management
    2.  
      Editing the built-in administrator roles
    3.  
      Creating custom administrator roles
    4.  
      Assigning administrator roles to an archive account
    5.  
      Assigning the reviewer role to an archive account
    6.  
      Assigning several archive accounts for monitoring
  7. Managing Policies
    1.  
      About Policy Management
    2.  
      Configuring archive options
    3.  
      Enabling and disabling account archiving
    4.  
      Configuring the InsightAI feature
    5.  
      Configuring an advanced password policy
    6.  
      Configuring trusted networks for Arctera Insight Archiving access
    7.  
      Managing Custom Headers
    8.  
      Managing Discard Rules
  8. Managing Authentication
    1.  
      Configuring the Arctera Insight Archiving authentication service
    2.  
      Enabling the Authentication Settings permission for the Policy Manager role
    3.  
      Assigning the Policy Manager role to an administrator
    4.  
      Selecting an authentication method
    5.  
      Uploading a token-signing certificate
    6.  
      Validating the Identity Provider URL
    7.  
      Activating single sign-on
  9. Managing Retention Policies
    1.  
      About Retention Management
    2.  
      Supported retention scenarios for WORM and non-WORM Insight Archiving customers
    3.  
      Configuring the default retention period
    4.  
      Creating a retention policy
    5.  
      Editing a retention policy
    6.  
      Deleting a retention policy
    7.  
      Associating a retention policy with a policy target
    8.  
      Disassociating a retention policy from a policy target
    9.  
      Enabling and disabling the storage expiry setting
    10.  
      Viewing the storage expiry status table
  10. Managing Email Continuity Services
    1.  
      About Email Continuity
    2.  
      Email Continuity prerequisites
    3.  
      Configuring Email Continuity
    4.  
      Provisioning the Email Continuity service for your mail servers
    5.  
      Adding the Email Continuity IP ranges to your firewall and mail server allowlists
    6.  
      Updating your email security provider routing configuration
    7.  
      Testing the Email Continuity configuration
    8.  
      Managing Email Continuity
    9.  
      Email Continuity FAQ
  11. Managing Reports and Notifications
    1.  
      About Arctera Insight Archiving reports and notifications
    2. Reports
      1.  
        Generating Messaging reports
      2.  
        Generating Insight Personal Archive reports
      3.  
        Generating Mobile Web Access reports
      4.  
        Generating Insight eDiscovery reports
      5.  
        Generating an Insight Surveillance specific Report
      6.  
        Generating Transcription reports
    3. Usage
      1.  
        Generating a service usage report
      2.  
        Generating a mailbox statistics report
      3.  
        Generating an archived message size report
      4.  
        Generating a capacity trend report
    4. Logs
      1.  
        Viewing the Activity Log
      2.  
        Viewing the Message Log
      3.  
        Viewing the Usage Log
      4.  
        Creating a Retention Log Report
      5.  
        Viewing the Mobile Browser Log
      6.  
        Viewing the Personal Browser Log
      7.  
        Viewing the Discovery Browser Log
      8.  
        Subscribing to receive SIEM/SOAR Logs
    5. Notifications
      1.  
        Enabling or disabling usage notifications
      2.  
        Changing the usage notification threshold and frequency
      3.  
        Adding or removing email addresses for usage notifications
    6.  
      Generating Insight Capture-specific reports
  12. Classification
    1.  
      About classification
    2.  
      Which emails get classified?
    3.  
      Steps for setting up classification
    4.  
      Accessing the Arctera Insight Classification
    5.  
      Arctera Insight Archiving item properties for use in custom classification policies
  13. Managing Data Import
    1.  
      About Import Data
    2.  
      Importing data into archives
  14. AD FS Configuration Guide
    1.  
      Configuring AD FS to work with Arctera Insight Archiving
    2.  
      Adding a relying party trust for Arctera Insight Archiving
    3.  
      Generating a token-signing certificate

Selecting an authentication method

To manage secured user access to other Insight Archiving applications for example, Insight Personal Archive, you must configure the authentication service in Arctera Insight Management Console. You can select your preferred authentication method. This helps customers to centrally control access to archived databases across multiple cloud platforms by using corporate Single Sign-On (SSO) policies.

Prerequisite

Before you configure SSO authentication, you must:

  • Refer to the Arctera Insight Management Console Compatibility List for supported SSO providers.

  • Configure your enterprise server to integrate with the archiving SSO authentication service.

  • Set up Active Directory user synchronization using CloudLink or MS Office 365 Sync in the Provisioning options.

To select an authentication method

  1. In the left navigation pane, select Policy Management > Authentication Management, and click Edit.
  2. Under Setup Authentication, in the Authentication Type field, select the required type of authentication method and perform the corresponding actions.

    Authentication Type

    Description

    Cloud Archive Database

    Upon selecting this option, specify the following options:

    1. Password Change Required?:

      • Select Yes to ask users to change their password during their initial login after configuring their authentication setup.

        Users need to provide their username and password when accessing the application that is configured for SSO. For example, Insight Personal Archive.

        To understand password complexity rules, See Configuring an advanced password policy.

      • Select No if users do not need to change their password during their initial login.

    2. Multi Factor Authentication Required?

      • Select Yes to set requirement for multi-factor authentication.

        Upon selecting Yes, the Type Of Authentication Required? field appears. Currently, users can use either Email or TOTP authentication option.

        Selecting Email requires users to verify via a link or OTP sent to their registered email.

        Selecting TOTP requires users to authenticate using a time-based one-time password via an authenticator app.

      • Select No if multi-factor authentication is not required.

    3. Click Save to finish the configuration.

    Single Sign-On ADFS

    Upon selecting this option, specify the following options:

    1. Hybrid Login Allowed?:

      • Select Yes to enable hybrid login. The Multi Factor Authentication Required? option remains available.

      • Select No to disable hybrid login. The Multi Factor Authentication Required? option becomes unavailable.

        Note:

        This option is supported only if the Single Sign-On - ADFS authentication type is selected. For other Multi Factor Authentication options, such as Azure, Okta, OneLogin, and so on, this option remains disabled.

    2. Role Claims Enabled?:

      • Select Yes to assign role-based SSO response.

      • Select No to avoid role-based SSO response.

    3. Multi Factor Authentication Required?:

      • Select Yes to assign role-based SSO response. When Hybrid Login is enabled, multi factor authentication applies only when users log in with the CloudArchive credentials to access Insight Archiving applications.

        Upon selecting Yes, the Type Of Authentication Required? field appears. Currently, users can use either Email or TOTP authentication option.

        Selecting Email requires users to verify via a link or OTP sent to their registered email.

        Selecting TOTP requires users to authenticate using a time-based one-time password via an authenticator app.

      • Select No to avoid role-based SSO response.

    4. Unique OWA IdP:

      Specifies if you want to set any external authentication service to verify user credentials while accessing Outlook.

      • Select Yes to specify a separate identity provider for Outlook access.

        Upon selecting Yes, the Unique OWA CID field appears.

        • Select Yes to assign a distinct client ID for each session to enhance security by preventing unauthorized access and session hijacking.

        • Select No to avoid assigning a distinct client ID for each session.

      • Select No to avoid specifying a separate identity provider.

    5. Your Trust Information:

      Upon saving, the application displays the Customer ID, Unique OWA Client ID, and Entity ID, if enabled during configuration.

    6. Select the I have read the instructions for setting the provided Entity ID and created my public key for upload. check box to confirm your configuration.

    7. Click Save to finish the configuration.

    Single Sign-On - SAML 2.0 based:

    Upon selecting this option, specify the following options:

    1. Hybrid Login Allowed?:

      • Select Yes to enable hybrid login. The Multi Factor Authentication Required? option remains available.

      • Select No to disable hybrid login. The Multi Factor Authentication Required? option becomes unavailable.

        Note:

        This option is supported only if the Single Sign-On - SAML 2.0 authentication type is selected.

    2. Role Claims Enabled?:

      • Select Yes to assign role-based SSO response.

      • Select No to avoid role-based SSO response.

    3. Multi Factor Authentication Required?:

      • Select Yes to assign role-based SSO response. When Hybrid Login is enabled, multi factor authentication applies only when users log in with the CloudArchive credentials to access Insight Archiving applications.

        Upon selecting Yes, the Type Of Authentication Required? field appears. Currently, users can use either Email or TOTP authentication option.

        Selecting Email requires users to verify via a link or OTP sent to their registered email.

        Selecting TOTP requires users to authenticate using a time-based one-time password via an authenticator app.

      • Select No to avoid role-based SSO response.

    4. Unique OWA IdP:

      Specifies if you want to set any external authentication service to verify user credentials while accessing Outlook.

      • Select Yes to specify a separate identity provider for Outlook access.

        Upon selecting Yes, the Unique OWA CID field appears.

        • Select Yes to assign a distinct client ID for each session to enhance security by preventing unauthorized access and session hijacking.

        • Select No to avoid assigning a distinct client ID for each session.

      • Select No to avoid specifying a separate identity provider.

    5. Your Trust Information:

      Upon saving, the application displays the Customer ID, Unique OWA Client ID, and Entity ID, if enabled during configuration.

    6. Select the I have read the instructions for setting the provided Entity ID and created my public key for upload. check box to confirm your configuration.

    7. Click Save to finish the configuration.