Login
      Contents x
      Security settings
        • Print
        • PDF
        Contents

        Security settings

          • Print
          • PDF
          Article Summary

          Available in Classic and VPC

          NAVER Cloud Platform provides additional security settings such as two-factor authentication and API authentication keys for its members' personal information protection and safe service use.

          Set up two-factor authentication

          When logging in to NAVER Cloud Platform, you can enter your ID and password and undergo a two-factor authentication to complete the login. Two-factor authentication is not a required item, but we recommend setting two-factor authentication as an extra layer of security to protect your account information. To configure, follow these steps:

          1. Connect to NAVER Cloud Platform portal.
          2. Click Login at the upper right of NAVER Cloud Platform portal.
          3. When the Login screen appears, enter your ID and password, then click the [Log-in] button.
          4. Click the My page menu at the top center and then the Manage account menu.
          5. Enter the current password one more time to protect your information, then click the [OK] button.
          6. On the page to manage accounts, select the [Manage Two-factor Authentication] tab menu.
          7. Click the [Set with Authentication Number] button for two-factor authentication based on the authentication number, and click the [Set with OTP] button for two-factor authentication based OTP.
            • Set with authentication number: perform two-factor authentication by entering the authentication number sent to the registered mobile phone number or email address
            • Set with OTP: perform two-factor authentication by entering one time password together with Google OTP app
          8. On the two-factor authentication setting page, set the required items and click the [OK] button.
          Note

          If you can't log in due to losing and changing your phone or deleting your email account after setting the two-factor authentication, please contact Support.

          Authentication key management

          NAVER Cloud Platform allows you to control the various features of the provided services with APIs. You can register, edit, delete, and search data after entering action-specific parameters. You can also utilize them to run services and automate operation tools. These APIs are issued to each member by organizing the API authentication key, which is a user identification tool, into a pair of access key and secret key so that only users with permissions can call them. Therefore, if the API authentication key is leaked to a third party, the resources can be arbitrarily changed or searched, resulting in serious security problems.
          Therefore, we recommend issuing the API authentication key from the sub account, not the main account with all the permissions, and periodically replacing it to prevent leakage. If the API authentication key is not used or is suspected to have been stolen, we recommend suspending its use or deleting it for security reasons.
          To create, stop, or delete API authentication keys to minimize security threats, follow these steps:

          1. Connect to NAVER Cloud Platform portal.
          2. Click Login at the upper right of NAVER Cloud Platform portal.
          3. When the Login screen appears, enter your ID and password, then click the [Log-in] button.
          4. Click the My page menu at the top center and then the Manage account menu.
          5. Enter the current password one more time to protect your information, then click the [OK] button.
          6. On the page to manage accounts, click the [Manage authentication keys] tab menu.
          7. Click the [Create new API authentication keys] button to issue an API authentication key.
          8. Click the [View] button of the Secret Key to check the issued authentication key.
          9. Click the [Disable] button in the management menu to disable the issued authentication key.
          10. Click [Enable] button in the management menu to use the disabled authentication key again, and then click [Delete] button to delete it.
          Note
          • You can create up to 2 API authentication keys per account.
          • If you created a new API authentication key, then apply the changed API authentication key to normally use the service you were using.

          Set API access restrictions for the main account

          Make it available only from specific IP bands to prevent access to the API Gateway from unauthorized locations.
          To configure API available only to specific IP bands, follow these steps:

          1. Log in to NAVER Cloud Platform portal.
          2. Go to My page > Manage account > Manage authentication key.
          3. In the [IP band] field of the API access restrictions menu, enter the IP band you want to specify.
            However, the 0.0.0.0-32 bands are not allowed for security reasons.
          4. Click the [Save] button.

          CIDR notation

          IP Address indicates the IP bands to allow access in the format 192.168.0.1-192.168.0.255. NAVER Cloud Platform also supports input using CIDR (Classless Inter-Domain Routing) notation, which is commonly used in network management.

          ![userguideaccount-cidr-1_kr](https://cdn.document360.io/6998976f-9d95-4df8-b847-d375892b92c2/Images/Documentation/userguide-userguideaccount-5_cidr-1.png){height="" width="70%"}
          CIDR is a way of noting a range of contiguous IP addresses. CIDR notation can be expressed by separating IP addresses into Net IDs (Network IDs) and Host IDs, and grouping IP bands (Host ID categories) that fall under a Net ID. This is referred to as Address Aggregation / Supernetting.
          ![userguideaccount-cidr-2_kr](https://cdn.document360.io/6998976f-9d95-4df8-b847-d375892b92c2/Images/Documentation/userguide-userguideaccount-5_cidr-2.png){height="" width="70%"}
          Commonly used IP addresses consist of four octets.
          CIDROctetOctetOctetOctetRangeIP Address BandHosts
          192.168.0.0/241921680024192.168.0.0 ~ 192.168.0.255256
          192.168.10.23/30192168102330192.168.10.20 ~ 192.168.10.234
          192.168.23.11/32192168231132192.168.23.11 ~ 192.168.23.111

          CIDR notation consists of an IP band as an IP address of four octets, followed by a forward slash (/) and a range value. The range value can be between 0-32, or 32 bits. In CIDR notation, this can be understood as meaning that any number of bits can follow the indicated range value. Therefore, the IP band is calculated as the range from the 4 octet value represented by the IP address to the number of bits that can come after the range value. The number of bits from the 4 octet value of the IP address to the range value is considered the fixed range, the Net ID, and the remaining bits are counted as the available Host ID band.

          Note

          Range values are limited to values between 24 and 32.

          The number of IP addresses in Host by range value is shown in the table below.

          RangeClassHosts
          /321/256 C1
          /311/128 C2
          /301/64 C4
          /291/32 C8
          /281/16 C16
          /271/8 C32
          /261/4 C64
          /251/2 C128
          /241 C256
          Caution

          When you add an input line, the range will be set to Default /32 (single IP address) and can be editable, so type carefully.

          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout