Manage your company
As a user with the Manage company rights, you can check or change your company details and license settings, and manage authentication settings, such as two-factor authentication, password expiration, account lockout, and single sign-on.
To get to the My Company page, follow these steps:
Log in to GravityZone.
Click on your profile in the upper right side of the screen.
From the drop-down menu, select My Company.
The information is divided into these sections: Company details, Authentication, and Licensing.
The following fields are available for editing:
Note
Fields marked with * are mandatory.
Basic company details
Company name - enter the name of the company.
Country - select the country the company is based in.
Field of activity - the main field of activity the company operates in.
Management permissions
Your Bitdefender partner can assist with the security management - Select this option if you want your partner to have access to managing endpoint security directly. If this option is not selected:
The company will still appear in the Network page, but its network will be invisible to its partner.
The company's partner will not be able to modify specific settings.
The company's partner will be able to manage its subscription further on.
The company's partner cannot manage its user accounts.
The company's partner will be able to create only specific reports, which do not disclose network information.
Note
This option is mandatory when using the MDR service. If this option is not selected:
The MDR service cannot be enabled.
You cannot add an MDR product.
The MDR contact details section is unavailable.
All companies in the management chain, from the target to the Distributor, must allow their direct Partner to assist with security management.
You cannot disable this option if you are using the MDR service.
Your Bitdefender partner can download your quarantined files - This option allows your direct partner to retrieve and download quarantined files from your company. To enable the option, you must have Manage Company and Manage Network user rights.
Your Bitdefender partner has redaction activated for your Email Security account - When enabled, GravityZone masks sensitive information when you are accessing emails through reports in the Email Security console.
Contact details for GravityZone
This information is used by Bitdefender staff to contact you for GravityZone related issues.
Full name - The name of the designated contact person for GravityZone issues.
Email address - The email address of the designated contact person.
Position - The position of this person in your company.
Phone number - The phone number of the designated contact person.
Contact details for MDR
Customer with a yearly MDR license
The information in this section is mandatory for Customers with a yearly MDR license.
Note
This section is visible if you have enabled assistance from your Bitdefender partner for security management.
The MDR contact can be:
An existing user account from your company
A custom contact
To use information from an existing account, select Use data from a user account and follow these steps:
If this section already contains data, click Clear data to make updates.
Select a user account from the drop-down menu.
Click Use contact information.
The Full name, Email address, and optionally the Phone number will get auto-filled.
If the previously selected contact has never been verified, click Send a verification code.
An email with the verification code will be sent to the provided email address.
The code is valid for 30 minutes.
Enter the verification code received via email.
If no phone number is associated with the selected account, manually provide a valid one. This phone number will be saved to the user account information after you click Save.
Note
Any changes made to the selected user account will automatically update the contact details, keeping them up to date.
To use a custom contact, follow these steps:
If this section already contains data, click Clear data to make updates.
Enter the Full name, Email address, and Phone number manually.
Click Send a verification code.
An email with the verification code will be sent to the provided email address.
The code is valid for 30 minutes.
Enter the verification code received via email.
After saving, the new emergency contact is automatically generated in the MDR portal. For information on emergency contacts, refer to Emergency Contacts.
To learn how to monitor your service status and access the MDR console directly from GravityZone, refer to MDR service.
Additional company details
Registered address - Enter the physical address of the company’s office
Phone number - enter the company's official phone number.
Logo. You can add the company's logo image. All reports and email notifications issued for your company will include the logo image.
To add the company’s logo:
Click the Change button.
Browse for the image logo on your computer.
Click Open.
To reset the logo to the image provided by Bitdefender, click the Default button.
Note
Fields marked with * are mandatory.
Two-factor authentication
Enforce two-factor authentication (Recommended)
Two-factor authentication (2FA) adds an extra layer of security to GravityZone accounts, by requiring an authentication code in addition to Control Center credentials.
2FA requires downloading and installing the Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator app - compatible with the standard RFC6238 - on the user's device. The device can be a smartphone or a computer.
The authentication app generates a six-digit code each 30 seconds. To complete the Control Center login, after entering the password, the user will have to provide also the six-digit authentication code.
Two-factor authentication is enabled by default when creating a company and this setting cannot be changed. At login, a configuration window prompts users to enable this feature. Users have the option to skip enabling 2FA for five times only. At the sixth login attempt, skipping the 2FA configuration is no longer possible and users are not allowed to log in.
Users trust their browsers. This option allows you to specify the period during which GravityZone remembers the browsers used for logging in to Control Center:
Select Never for users to enter the six-digit code from their authenticator every time they log in.
Select 1 to 90 days to allow users to skip entering the six-digit code for that specific period and log in directly to Control Center. To enable this option, users must also to select the Trust this browser check box on the GravityZone login screen.
By default, one browsers corresponds to one device such as a computer. If users log in from another browser than the one remembered, they have to enter the six-digit code from authenticator. For details on scenarios where the Trust this browser option does not work, refer to this topic.
Note
You can view the 2FA status for a user account in the Accounts page.
If users cannot log in to GravityZone because of they a new device (phone or computer) or lost secret key, you can reset its two-factor authentication activation from the user account page, under Two-factor authentication section. For more details, refer to User Accounts.
Changing the period for remembering device reflects in user activity section of Control Center.
Password expiry options
Set maximum password age to 90 days
This option enables the password expiration policy. Users need to change their passwords sooner than the specified age. Otherwise, they will not be able to log in to GravityZone anymore.
Lock out account after 5 login attempts with invalid passwords
Select 1 to 90 days to allow users to skip entering the six-digit code for that specific period and log in directly to Control Center. To enable this option, users must also to select the Trust this browser check box on the GravityZone login screen.
The policy applies to the accounts created in GravityZone.
A notification will be sent out to all company’s users when the account lockout option is being enabled on a certain company.
Configure single sign-on using SAML
GravityZone supports service provider(SP) initiated single sign-on (SSO) as a simple and secure alternative to the classic login with username and password.
This method requires integration with 3rd party Identity Providers (IdP) using SAML 2.0, such as AD FS, Okta, and Azure AD, that authenticate GravityZone users and provide them access to Control Center.
This is how GravityZone SSO works:
Users enter their email addresses in the GravityZone login page.
GravityZone creates a SAML request and it forwards the request and the users to the Identity Provider.
Users are required to authenticate with the Identity Provider.
After authentication, the Identity Provider sends a response to GravityZone in the form of an XML document signed with an X.509 certificate. Also, the Identity Provider redirects users to GravityZone.
GravityZone retrieves the response, validates it with the certificate fingerprint, and allows users to log in to Control Center with no other interaction from them.
Users continue to automatically log in to GravityZone Control Center as long as they have an active session with the Identity Provider.
Note
You cannot initiate a GravityZone login from a third-party Identify Provider.
To enable SSO for a company, you need to do the following:
Configure the Identity Provider to use GravityZone as service provider. For supported Identity Providers and configuration details, refer to this article.
In the company details page, under Configure single sign-on using SAML, enter the identity provider metadata URL in the corresponding box.
Configure users under the company to authenticate with their Identity Provider. For details, refer to Managing User Authentication Methods.
To disable single sign-on for a company you manage, delete the Identity Provider metadata URL.
After disabling single sign-on for a company, users will automatically switch to log in with GravityZone credentials. Users can obtain new passwords by clicking the Forgot password? link on the Control Center login page and following the instructions.
After re-enabling SSO for a company, users will continue to log in to Control Center with GravityZone credentials. You need to configure manually each account to use SSO again.
Note
Click the Next button in the lower right side of the screen to proceed to the next screen.
Important
You cannot use at the same time single sign-on (SSO) and two-factor authentication (2FA) in GravityZone.
Your company's licensing information is divided into these sections.
License information
This section displays your company ID, company hash and payment plan.
For MDR licenses, this section also displays the MDR service model, MDR entitlement period, and MDR status.
Note
The payment plan can have one of these values:
Pre-paid - either a trial key or a license key with predefined validity (6 or 12 months) was used.
Monthly usage - a monthly subscription plan.
Note
The following options are available only for companies with monthly subscriptions:
Change to pre-paid license - This will allow you to add a license key and change to a yearly payment plan.
View monthly usage report - Clicking this button will redirect you to the Reports page and will open a Monthly License Usage Report.
Bitdefender partner
This section displays relevant information on your partner company.
Use the Change Partner button to designate a different partner company.
Important
If you are using the MDR service, the target Partner must fulfill the management from above prerequisite.
If you are a Customer with a monthly subscription using MDR, you can only change your Partner if the new Partner has MDR resell rights enabled and valid MDR contact details configured. You may be required to enter new MDR contact details before completing the move.
If you are a Customer with a yearly MDR license and use your Partner's contact information, go to My company > Company details and enter new MDR contact details before performing the change.
License usage details
This section provides information relevant to your current license usage. If you are a yearly license user, you may also add and remove license keys. The information may vary, based on your billing method:
Your standard products and add-ons are displayed, along with additional usage information:
Product name - the name of the product you are using.
Product type - shows if the product is a standard one or an add-on.
Endpoint Security - full protection.
Bitdefender EDR - limited EDR capabilities (report only).
Product status - shows if the product is active, expired or a trial.
License key - the unique ID that grants you access to a Bitdefender product.
Expiry date - the date when your license expires.
Total units - the maximum units available with the license.
Usage breakdown - the number of units that are currently being used by your company.
Adding a product
To add a product, follow these steps:
Click the Add product button.
Enter the license key in the Add new product window.
Click the Check validity button.
Note
In some cases, adding a specific license key will replace one of your current products. This may lead to a change of the feature set you will have.
Warning
Depending on your company type, some products may be incompatible.
If you are adding an MDR license and do not yet have one for any service model, fill in the Contact details for MDR form with valid data.
You must provide the contact details of the person designated for MDR issues. These details include:
Name
Email address
Phone number
You can use data from a user account in your company, or you can enter custom details. When entering a new email address, you must validate it by using the Send a verification code option.
For information on the whole procedure, refer to the Customer with a yearly MDR license section.
If you are adding an MDR license for a different service model than your current one, the Contact details for MDR form is pre-filled. Either keep the existing details or update them as needed.
Important
After the new MDR license is applied, your MDR service Status will display as Switching flavor, and your current MDR service model will remain active until the update is finalized.
Click the Add product button.
Note
As soon as a valid MDR license is assigned:
Your account and all accounts in your company are automatically migrated to the Login with GravityZone Identity Provider authentication method, which enables access to the MDR portal from GravityZone Control Center.
You can access the MDR service page from GravityZone Control Center. For more information, refer to MDR service.
Removing a product
To remove a product from your company follow these steps:
Select the product you want to remove.
Click the Remove product button.
Click the Remove button to confirm.
A table provides information regarding the status of your subscription:
Note
Depending on your license, one or more of these fields may not be visible to you.
Product name - The name of the product.
Product type - The type of the product:
Endpoint Security - full protection.
Bitdefender EDR - Limited EDR capabilities (report only).
Protection model - The protection model assigned to the product.
Product status - The status of the product:
Active
Expired
Trial
License key - the unique ID that grants you access to a Bitdefender product.
Total seats - The total number of seats provided by the license.
Reserved seats - How many of the seats provided by the license have been reserved for specific companies.
Used reserved seats - The number of reserved seats that are currently in use.
Available reserved seats - The number of reserved seats that are unused.
Unreserved seats - The number of seats that have not been allocated to any specific company.
Used unreserved seats - The number of unreserved seats that are currently in use.
Available unreserved seats - The number of unreserved seats that are unused.
Note
You can use the Refresh Details button check for any changes in the displayed information. Once clicked, the button will be grayed out for 30 minutes.
This section allows you to extend the expiration date and increase the number of seats for your license. Additionally, a list of compatible products is displayed, which you can either enter a trial for or purchase directly.
This section is only visible to companies that have purchased products exclusively from Bitdefender. If at any point a company has purchased a product from a Partner, this section will not be visible for its users.
Add seats
You can use this section to increase the number of seats of your licenses by up to 100. To qualify for this feature, a license must meet the following requirements:
It must be purchased online, directly from Bitdefender.
It must have less than 100 seats.
The license must not be expired.
To view this window, make sure that the Add seats tab is selected:
Product name - Select the license you want to add the seats for.
Tab toggle - Switch between the Add seats and the Renew tabs.
Increase seats by - Set the number of seats you would like to add to your license.
Once entered, the amount displayed under Your total price is automatically updated. You can add seats up to a total of 100 seats per license. If you want to extend your license further, you need to purchase an additional license key.
Technical Support - This section provides you with an direct link to contacting support in case you need assistance with this feature.
Current license - Provides all the relevant license characteristics, such as the number of seats, expiration date, and more, for the license currently selected under Product Name.
Updated license - Indicates the characteristics the license after the changes you have selected will be applied.
Your total price - Displays the total payment required to apply the currently selected changes to your license. anci
Proceed to checkout - This link takes you to the marketplace website, where you can confirm the purchase, enter the payment details, and finish updating the license.
Renew
This tab allows you to extend the expiration date of you licenses, adding the original validity period to the expiration date. To qualify for this feature, a license must meet the following requirements:
It must be purchased online, directly from Bitdefender.
It must have no more than 100 seats.
The license must not be expired for more than 30 days.
The expiry date must be less than 370 days in the future.
To view this window, make sure that the Renew tab is selected:
Product name - Select the license you want to extend the expiration date for.
Tab toggle - Switch between the Add seats and the Renew tabs.
Number of years - This section indicates the period that will be added to the expiry date of your license. It is the same as the original validity period of the selected license.
Billing account details - This section provides you with a direct link to your account on the Bitdefender store.
Technical Support - This section provides you with an direct link to contacting support in case you need assistance with this feature.
Current license - Provides all the relevant license characteristics, such as the number of seats, expiration date, and more, for the license currently selected under Product Name.
Updated license - Displays the license characteristics, with the updated expiration date.
Renew now - Click this button to confirm the renewal of the selected license.
Buy compatible products
This section displays a list of products compatible with your main license, available for direct purchase from GravityZone. You have the option to start a trial to test the products or proceed with a direct purchase.
Only add-on products that can be purchased directly are listed here. For a comprehensive list of all products available for trial, please visit the Products Hub page.