Security

You can modify the following security settings at Control Panel > Security > Security for DSM browsing sessions:

• Logout timer (minutes): Users will be automatically logged out from DSM if they are inactive for the time period specified here. Enter any value from 1 to 65535.
• Enhance browser compatibility by skipping IP checking: If you access DiskStation through an HTTP proxy and encounter random logouts, you can enable this option to skip IP checking.
• Improve protection against cross-site request forgery attacks: This option enhances the system's protection against cross-site scripting attacks. This option will take effect the next time you log into DSM.
• Do not allow DSM to be embedded with iFrame: You can enable this option to restrict other websites from embedding DSM into other web pages with iFrame, thus preventing certain types of attacks from malicious websites. Specific websites can be allowed to embed DSM with iFrame by clicking the button Allowed websites.