Manage your account

To check or change your account details and settings:

  1. Click your username in the upper-right corner of the console and choose My Account.

  2. Under Account Details, correct or update your account details.

    • Full name

      Enter your full name.

    • Email

      This is your login and contact email address. Reports and important security notifications are sent to this address. Email notifications are sent automatically whenever important risk conditions are detected in the network.

    • A Change password link allows you to change your login password.

  3. Under Settings, configure the account settings according to your preferences.

    • Timezone - Choose from the menu the timezone of your account. The console will display time information according to the selected timezone.

    • Language - Choose from the menu the console display language.

    • Session Timeout - Select the inactivity time interval before your user session will expire.

    • Landing page - Select from the menu the GravityZonehomepage. The default page is Executive Summary.

  4. Under Login Security, configure two-factor authentication and check the status of the policies available to secure your GravityZone account. Company-wide set policies are read-only.

    • Two-factor authentication. The two-factor authentication adds an extra layer of security to your GravityZone account, by requiring an authentication code in addition to your Control Center credentials.

      When first logging in to your GravityZoneaccount you will be prompted to download and install either Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator app - compatible with the standard RFC6238 - on a mobile device. After the installation is complete, link it to your GravityZone account, then use it with each Control Center login. The Authenticator app generates a six-digit code each 30 seconds. To complete the Control Center login, after entering the password, you will need to provide the Authenticator app six-digit code.


    You may skip this process three times, after which you will not be able to log in without two-factor authentication.

    To enable the two-factor authentication:

    1. Go to My account > Two-factor authentication and click Enable.

    2. A dialog box opens. Click the appropriate link to download and install Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator on your mobile device.

    3. On your mobile device, open the authentication app.

    4. In the Add an account screen, scan the QR code to link the app to your GravityZone account. You can also enter the secret key manually.

      This action is required only once, to enable the feature in GravityZone.


      Make sure to copy and save the secret key in a safe location. Click Print a backup to create a PDF file with the QR code and secret key. If the mobile device used for activating two-factor authentication is lost or replaced, you will need to install Google Authenticator, Microsoft Authenticator, or any two-factor TOTP (Time-Based One-Time Password Algorithm) authenticator - compatible with the standard RFC6238, on a new device and provide the secret key to link it to your GravityZone account.

    5. Enter the six-digit code in the Authenticator app code field.

    6. Click Enable to complete the feature activation.


    Your Company Administrator may turn two-factor authentication mandatory for all GravityZone accounts. In this case, you will be asked at login to configure your 2FA. At the same time, you will not be able to deactivate 2FA for your account as long as this feature is enforced by your Company Administrator.

    Be aware that, if the currently configured 2FA is disabled for your account, this secret key will no longer be valid.

    • Password expiration policy is disabled/enabled. Regular changes to your password provide an added layer of protection against the unauthorized use of passwords, or limits the duration of unauthorized use. When enabled, GravityZone requires you to change your password no later than 90 days.

    • Account lockout policy is disabled/enabled. This policy prevents access to your account after five consecutive failed login attempts. This measure is to protect against brute-force attacks.

      To unlock your account, you need to reset your password from the login page, or contact another GravityZone administrator.

  5. Click Save to apply the changes.


You cannot delete your own account.