Appendix: Action1 Advanced Settings
Advanced Settings are available in the Configuration section of the Action1 web console.
- To view, clone, or edit them, a role with at least Manage Advanced Settings permission is required.
- Currently, the settings are enterprise-wide.
- For some of them, you can set the scope to Organization or Endpoint group; it is recommended that you clone the settings first and make the necessary changes to the copy:
- To apply the same value to other organizations or endpoint groups, use Add Scope.
- To apply another value to other organizations or endpoint groups, start with Clone and take the steps listed in the example below.
Example
As an app administrator, you need to change the Adobe Acrobat Reader DC app update behavior for the HQ Organization to Prompt & Force Close.
For that:
For that:
- Clone the Application restart behavior during updates advanced setting. The cloned setting will be shown in the list instead of the original. (To check this, click Actions – they will include the Delete command, which is available for copies only.)
- For the clone, specify the desired Value (that is, Prompt & Force Close).
- Click Add Scope > Organization and select HQ.
The Enterprise scope can then be deleted for this clone.
The table below lists the Advanced Settings with their scope and possible values; you can click the link in the Details column to learn more about each setting and its use cases.
Name
Application restart behavior during updates
Console Logo
Disable Action1 MFA for External Identity Providers
Disable Password Delivery via Email
End-User Prompt Logo
Endpoint Custom Attributes
Identity Provider
IP Allow List
Present Last Login Details Post-Authentication
Reboot Prompt Customization
Remote Desktop Connection Prompt Customization
Remote Desktop User Choice
Remote Desktop Disable Connection
Remote Desktop Prompt Timeout
Remove missing update status for pending per-user uninstalls
Update Deployment SLA: Critical, Important, Moderate, Other Severities
Vulnerability Remediation SLA: Critical, High, Medium, Low
Warn about software packages without digital signatures
Category
n/a
Custom branding
Single sign-on
n/a
Custom branding
n/a
Single sign-on
n/a
n/a
Custom branding
Custom branding
Remote desktop
Remote desktop
Remote desktop
Software repository
SLA
SLA
Software repository
Description
Certain applications need to be closed before they can be updated. This setting defines what happens when Action1 determines that a running application needs to be closed before the update.
Upload your own logo to be displayed in the upper left corner of the console.
Disables email-based multi-factor authentication (MFA) for Action1 when using external identity providers.
Prohibits sending the temporary password for newly created Action1 user accounts in invitation emails. If set to Yes, the inviter must send the password to the user through a separate secure channel (out-of-band).
Upload your own logo that will be displayed in all end-user prompts (such as reboot requests).
Custom attributes are user-defined values that can be used in dynamic endpoint group filtering. Examples: warranty expiration date, software installed (or not installed), enabled OS features, specific system configurations (e.g., a registry key set to a specific value), and more.
Configure your SSO settings for Action1 login access with the identity provider of your choice.
Restricts access to the specified IP addresses only. Requests from all other IP addresses are denied. If the allow list is empty (default), access is allowed from all IP addresses.
Displays information about the previous login after the user signs in. If set to Yes, a popup is shown after each successful interactive login with the previous login’s date and time, IP address, location, and status.
Customize the captions, texts, and buttons in the reboot prompt that will be shown to endpoint users.
Customize the captions, texts, and buttons in the remote desktop connection prompt that will be shown to endpoint users.
Defines which action button should be the default choice when prompting a remote interactive user to accept or reject a remote desktop connection.
If set to Yes, it prohibits Remote Desktop Connection to endpoints.
Define the timeout period (in seconds) for the remote interactive user to accept or decline a remote desktop connection.
If set to Yes, then pending per-user software uninstallations in inactive user profiles will be treated as completed, with all vulnerabilities marked as resolved and not showing up in any views.
If set to NO, the vulnerabilities will be treated as present until the uninstallation completes upon the user's next logon.
Establish the SLA for deploying updates, i.e., aim to deploy within X days of release. Overdue updates will be prominently displayed on the dashboard.
Establish the SLA for vulnerability remediation, i.e., aim to address within X days of discovery. Overdue vulnerabilities will be prominently displayed on the dashboard.
If set to Yes, Action1 will warn about the lack of digital signatures in software packages when deploying or updating them (a warning will be recorded in the automation history).
Value
Action1 logo
No (default) - that is, email-based MFA is active by default.
No (default) - that is, password delivery through email is active by default.
Action1 logo
Custom Attribute 1, Custom Attribute 2, etc.
Action1 (default), Duo, Entra ID, Google, Okta
None
No (default)
Default action button - Reboot Required
Action1 Connection Request: By accepting the connection, you allow the remote person to view and possibly control your computer. Choose the action by pressing a button below. The connection will be automatically accepted in {timeout} seconds.
Button names: Accept, Reject
Accept
No (default)
Can be from 1 to 180 seconds, default is 15 seconds
Yes (default)
Recommended default:
Recommended default:
Yes (default)