User Authentication & Management
PromoProxy provides user authentication functionality.
To use PromoProxy, you must register a user in the console and complete the initial login with the issued credentials.
Register Users
- In the PromoProxy Console, click Users from the left menu.
- Click “Create User”, enter the new user details, and add the user.
⚠️ When a user is registered, an “Action required” email will be sent to the registered email address. From the link in the “Action required” email, the user must verify their email address and set a new password. The new password must be at least 8 characters long and include numbers, uppercase, and lowercase letters. Please note that it may take some time for the “Action required” email to arrive.
Update User Information
You can update registered user information from the PromoProxy console.
- Select the target user and click “Edit” in the upper right corner.
- To update the email address, select “Email change.” To update the password, select “Password reset.”
⚠️ When changing user information, it must be updated via the “Action required” email sent to the registered email address.
Authentication Method: IP Surrogate
PromoProxy maps user credentials to the originating IP address using IP surrogate authentication.
Subsequent communications are identified only by IP address, enabling fast recognition without requiring reauthentication across different browsers or desktop applications.
Features
- Seamless Authentication
Once logged into PromoProxy, users are not prompted to reauthenticate per browser, ensuring uninterrupted workflow. - Fast User Identification
User identification is lightweight, based purely on IP. - Cross-Application Support
Not only browsers, but also desktop apps like Slack and Teams are instantly associated with the user.
Authentication Expiry
After authentication, sessions expire after up to 8 hours, requiring reauthentication.
Limitations
- When multiple users share devices under a single global IP, individual user identification is not possible.
- If the IP address of the device connected to PromoProxy changes, PromoProxy will prompt reauthentication.
Note: If the new IP is already mapped to the user information, reauthentication will not be required. - In environments where IP addresses change frequently (e.g., mobile networks), reauthentication may occur often.
These are general limitations of the IP surrogate method.
In environments with shared global IPs or heavy mobile device usage, user identification via Cookie surrogate is recommended.
(Planned for future implementation)
Authentication Exemption Settings
By default, PromoProxy requires authentication for all user access. However, it is possible to configure Authentication Exemptions to allow direct access without authentication for specific domains or URLs.
This configuration is useful in cases such as:
- Access to internal systems or intranet environments where authentication is unnecessary
- Automated software updates requiring devices to connect directly
- Health checks or monitoring systems that generate constant access
Benefits
- Reduces unnecessary authentication requests, maintaining system stability
- Ensures uninterrupted operation of automated processes for devices and applications
- Provides convenience for specific use cases
Since authentication is skipped, these communications will not appear in access logs, and usage control or visibility per user will not be possible.
It is recommended to restrict exemptions to the minimum necessary scope.
Logout from the PromoProxy Service
PromoProxy does not currently provide a manual logout feature.
You can stop using the PromoProxy service by disabling the PAC file settings.
The login session will be automatically terminated after the Authentication Expiry
.