# Managing Access Rules

Access rules are plug-ins used to alter the way the logon process for the console is managed for individual users. Examples of access rules are local system only and email one-time passwords.

Some of these plug-ins may require configuration. The following example shows the configuration for the email one-time password setup:

<figure><img src="https://2423451286-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F42mDa58RoaDxb6t8mbaI%2Fuploads%2Fgit-blob-d1e928b182dc09933c1db191202bc97284ff0e47%2Fimage.png?alt=media" alt=""><figcaption><p>Access Rule Setup</p></figcaption></figure>

<figure><img src="https://2423451286-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F42mDa58RoaDxb6t8mbaI%2Fuploads%2Fgit-blob-ce094d2a2b6d2ba3bc4a133e5c11f4a0d987bc47%2Fimage.png?alt=media" alt=""><figcaption><p>Details of one-time password</p></figcaption></figure>

Once this Access Rule is enabled for a user, the logon experience changes and a new step is visible to the user just after they have performed the initial logon. This step allows the user to enter the one-time password that was emailed.

Access rules can be set against each user when they are created.