🔒 Enhanced Security - Admin Access Only

Administration Dashboard

Manage university systems, users, and security settings

🛡️ Enhanced Protection Active

This admin dashboard demonstrates advanced Cloudflare Access policies:

Identity Verification: Only specific admin emails allowed
Geographic Restriction: Access limited to Australia only
Device Posture: Must be on a managed device
Multi-Factor Authentication: Required for all access
Session Duration: 8 hours (shorter than student portal)
Full Audit Logging: Every action is logged for compliance

Total Students

12,847

Active Staff

1,234

Courses

487

Security Events

1,847

👥

User Management

Manage student and staff accounts, roles, and permissions

Manage Users →

📚

Course Administration

Create and manage courses, enrollments, and schedules

Manage Courses →

🛡️

Security Settings

Configure WAF rules, access policies, and security monitoring

Security Dashboard →

📊

Analytics & Reports

View detailed analytics, generate reports, and track metrics

View Analytics →

⚙️

System Configuration

Configure system settings, integrations, and preferences

System Settings →

💳

Financial Management

Manage fees, payments, scholarships, and financial reports

Finance Dashboard →

Recent Access Logs

gwynne@gwynnesgoodies.com

Accessed Admin Dashboard • Sydney, AU • 2 minutes ago

Allowed

admin@gwynnesgoodies.com

Accessed User Management • Melbourne, AU • 15 minutes ago

Allowed

unknown@external.com

Attempted Admin Access • Singapore, SG • 1 hour ago

Blocked

staff@gwynnesgoodies.com

Attempted Admin Access • Brisbane, AU • 2 hours ago

Blocked - Insufficient Permissions

admin@gwynnesgoodies.com

Accessed Security Settings • Sydney, AU • 3 hours ago

Allowed

🔐 Active Access Policies

These Cloudflare Access policies protect this admin dashboard:

Policy 1: Admin Email Verification

Rule: Email must be gwynne@gwynnesgoodies.com or admin@gwynnesgoodies.com

Action: Allow if matched, otherwise deny

Policy 2: Geographic Restriction

Rule: Request must originate from Australia

Action: Block all non-Australian access attempts

Policy 3: Multi-Factor Authentication

Rule: MFA required for all admin access

Action: Prompt for MFA if not already authenticated

Policy 4: Device Posture Check

Rule: Device must be managed and meet security requirements

Action: Deny access from unmanaged devices

Policy 5: Session Management

Rule: Session expires after 8 hours of inactivity

Action: Require re-authentication after expiry

💡 Why This Matters for Universities

🎯 Granular Control

Different policies for different user types. Students get broader access, admins get stricter controls.

📋 Compliance Ready

Full audit logs meet Privacy Act 1988 and NDB scheme requirements. Know exactly who accessed what, when.

🚀 Easy to Implement

No VPN infrastructure. No complex firewall rules. Configure policies in minutes, not weeks.

💰 Cost Effective

Replace legacy VPN, reduce IT overhead, consolidate vendors. Typical savings: 50-70% vs traditional solutions.