Your ASUSTOR NAS, like any other device, is susceptible to security breaches. Practicing basic cyber security hygiene<\/a> is the first step in securing your NAS. Here’s what you need to do in order to make your ASUSTOR NAS more secure.<\/p>\n <\/p>\n When you first set up your ASUSTOR NAS, or if you perform a soft reset on it<\/a>, your system admin password will be Unfortunately, ASUSTOR doesn’t allow you to change the name of the default admin account. That means that if the would-be hacker knows anything about ASUSTOR NAS and wants to hack yours, they’ll already know the username of the admin account is “admin”.<\/p>\n You can add an extra layer of security by creating a new user with a unique name that has admin privileges, and then disabling the default admin account.<\/p>\n You can do this by going to “Access Control” > “Add” > “Add New User.” In the “Add New User” screen, input your unique username, and then give a strong password that contains a mix of alphanumeric and special characters. ASUSTOR let’s you know when you have a strong password.<\/p>\n <\/p>\n On the next page, give admin rights to the new user account.<\/p>\n <\/p>\n Once set up, log out and switch to the new admin account you just created. Head back to the Access Control panel, select the default admin account, click “Edit,” select “Disable this Account,” and then click “Ok.”<\/p>\n <\/p>\n Two-factor authentication adds yet another layer of protection to the login process. If someone were to actually somehow get their hands on your login credentials, they’d still need to input the authentication code sent to the respective device. This makes two-factor authentication an extremely difficult security wall to break through.<\/p>\n Even better, ASUSTOR requires you to download and install an authenticator app, such as Google Authenticator, to your mobile device. This is more secure than using SMS, as SMS messages can be intercepted through phone networks, or threat actors can do what’s known as a SIM swap. And while you’re not 100% safe using an authenticator app, it’s better than the alternative.<\/p>\n The process for enabling two-factor authentication on your ASUSTOR NAS is pretty simple. To get started, head over to your personal settings and check the box next to “Enable 2-step Verification.”<\/p>\n <\/p>\n The wizard will carry you through the rest of the process. Make sure you have your mobile device with a QR code scanner handy.<\/p>\n <\/p>\n Writer and network\/cyber security expert, Dave McKay, eloquently defines a firewall<\/a> as a monitored and controlled boundary between your network and the rest of the internet, with its purpose being to keep cyber threats and malicious or unwanted network traffic out of your network. In other words, your firewall is your first line of defense.<\/p>\n ASUSTOR provides a software called ADM Defender, which comes with a firewall (and Network Defender), allowing you to block specific IP addresses from accessing the NAS or allow only certain IP addresses to access the NAS.<\/p>\n Navigate to the “ADM Defender” tab of your NAS settings to start configuring your firewall.<\/p>\n <\/p>\n <\/p>\n HTTPS is HTTP with Secure Sockets Layer (SSL)\/Transport Layer Security (TLS). You should always use HTTPS when possible–it encrypts the requests and responses that HTTP doesn’t. There’s a reason it’s so dangerous to use HTTP sites if you’re inputting credit card details or other personal information.<\/p>\nStrengthen Your Login Credentials<\/h2>\n
admin<\/code>. If you leave it as-is and someone manages to find the NAS on your network<\/a>, you’re going to get hacked. Period.<\/p>\n
Use Two-factor Authentication<\/h2>\n
Block Unauthorized IPs<\/h2>\n
Enable Hypertext Transfer Protocol Secure (HTTPS)<\/h2>\n