Getting started with ESET Secure Authentication Web Console

Once all required ESA components have been installed, some basic configuration is necessary via the ESA Web Console.

On your desktop, double-click the ESA Web Console shortcut.


ESA Web Console certificate

ESA Web Console uses a self-signed certificate. If you access the Web Console from a different machine than the machine hosting the Authentication Server, you will receive a certificate issue message.

Accessing the Web Console via Mozilla Firefox from the machine hosting the Authentication Server will also result in a certificate issue message.

To avoid a certificate issue message, add an exception.

Add Certificate exception

Mozilla Firefox

1.Click Advanced and click Add Exception....

2.In the Add Security Exception window make sure the Permanently store this exception is selected.

3.Click Confirm Security Exception.

Google Chrome

1.Click Advanced.

2.Click Proceed to <web address of ESA Web Console> (unsafe).

3.At this point, Google Chrome remembers the exception.

Internet Explorer 11

1.Click Continue to this website (not recommended).

2.In the right section of address bar click Certificate error, click View certificates, and then click Install Certificate....

3.In Certificate Import Wizard window select Local Machine for Store Location, click Next.

4.In the next screen select "Place all certificates in the following store", and click Browse.

5.Select Show physical stores checkbox, select Trusted Root Certification Authorities, and then click OK.

6.Click Next and click Finish.

7.Restart the computer.

Microsoft Edge

1.Try to access the Web Console in Internet Explorer 11 first, and then carry out the steps on adding certificate exception as described for Internet Explorer 11.

Log in to the ESA Web Console

Log in using the access credentials you created for the ESA Web Console during the Authentication Server install. In an Active Directory (AD) environment, if the Active Directory Integration type of deployment has been used, log in clicking Use domain authentication in a supported browser.


Activate your installation of ESET Secure Authentication.

The Web Console provides a quick overview about:

Users: Total number of users, number of users with activated 2FA, number of users with incomplete setup of 2FA, number of users locked out. If the number of 2FA enabled, Setup Incomplete or Locked Out is higher than 0, click the number to list the related users.

Servers: Status (online/offline) and version of the Authentication Server (AS) installed. If there are several sites in your Active Directory domain, and there is an AS installed in each site, the Servers section will list each AS.

Components: A list and number of ESA components in use, number of outdated ESA components. Click the number in the Out of date column to display the related computers/services.

License: User numbers, remaining SMS credits, remaining license days.

To configure 2FA for a supported Web Application, refer to the Web Application Protection section. For configuring 2FA on your VPN, refer to the VPN Protection section. To configure 2FA for Remote Desktop, refer to the Remote Desktop Protection section. To protect Windows login with 2FA, refer to installation of Windows Login. To add 2FA to a single sign-on process, refer to Identity Provider Connector.


You can provide feedback on ESET Secure Authentication via the Submit feedback section in ESA Web Console. That section appears only if your installation of ESET Secure Authentication has been activated.

Enable or disable 2FA or FIDO for the ESA Web Console

To enable or disable 2FA for the ESA Web Console, navigate to Components > ESA Web Console, and switch the Enable 2FA for Web Console or FIDO.

If a Domain Admin user has 2FA enabled (by default it is) or FIDO enabled, access to the Active Directory Users and Computers > ESET Secure Authentication screen and ESA Management Console is removed. To enable the access to those screens, disable 2FA and/or FIDO for the ESA Web Console.