Skip to content

Admin Portal

Accessing the Admin Portal

To access the admin portal, you will need to be configured as an organizational admin for one or more organizations. Contact Dapple support to have this configured for your profile.

The Dapple Admin Portal uses your profile passkey to authenticate administrators. To access the admin portal, enter this url in your web browser: https://api.dapplesecurity.com. You may use companion mode to authenticate using a browser on a computer using your mobile device.

For more information about how passkeys work and how Dapple manages them, see Passkeys.

Restricted Domains

Restricted domains allow your organization to claim and manage access to specific DNS domains. When you verify control of a domain through DNS, Dapple passkeys created for usernames that use that domain (for example, user@company.com) can be associated with and managed by your organization.

To create a restricted domain, you must have the ability to create a TXT DNS record for the domain you wish to restrict and administrative access to the organization you are managing.

Steps to Create a Restricted Domain

  1. Select Domains in the left hand menu bar
  2. Enter the Domain name (e.g., subdomain.example.com) and click Create Domain Restriction
  3. The Admin Portal will provide a name of a TXT record (e.g., _dappledomain.subdomain.example.com) and the contents of the TXT record
  4. Create the TXT record with the provided name and content in your DNS provider
  5. Once created, you can use the Verify Domain button to ensure the DNS record was created properly. There may be a slight delay while the DNS changes propagate
  6. Once verification is successful, the domain restriction is now active and Dapple passkeys for that domain can only be created by users in your Dapple organization. Furthermore, they MUST use their organization account for these passkeys, ensuring that admins have visibility and control over these passkeys

For additional details about how restricted domains work, see Restricted Domains in the Dapple Concepts guide.

SIEM Integration

Dapple allows duplicating authentication logs and alerts to an external system. Currently Dapple supports sending logs via syslog, which is widely supported by SIEM vendors.

Steps to Configure Syslog Export

  1. Ensure that you have a syslog collector enabled in your SIEM system and that you have the hostname and port available
  2. Select Alerts in the left-hand menu and click the Export button. Click Add to add a syslog server
  3. Enter the appropriate hostname and port. Also specify whether TCP or UDP should be used (TCP is preferred)
  4. After clicking Save, a copy of future authentication logs and alert messages will be sent to the external syslog server. Dapple always will retain an internal copy of all logs as well