Manuals / Kerio Tech / Computer Equipment / Network Router

Kerio Tech Firewall6 Local user accounts, Accounts mapped from the Active Directory domain, 186

Models: Firewall6

1 398
Download 398 pages 11.9 Kb
Page 186
Image 186

Chapter 13 User Accounts and Groups

local accounts. For detailed information about import of user accounts, refer to chapter 13.3.

Import of accounts is recommended in case of the Windows NT domain. If Active Directory domain is used, it is recommended to use the transparent cooperation with Active Directory (domain mapping — see chapter 13.4).

Accounts mapped from the Active Directory domain

If any of the Active Directory domain is selected as Domain, user accounts in this domain are listed.

Edit User

For mapped accounts, specific WinRoute parameters can be set (refer to chap- ter 13.2). These settings are stored in the WinRoute’s configuration database. Infor- mation stored in Active Directory (username, full name, email address) and authen- tication method cannot be edited.

Note: It is also possible to select more than one account by using the Ctrl and Shift keys to perform mass changes of parameters for all selected accounts.

In mapped Active Directory domains, it is not allowed to create or/and remove user accounts. These actions must be performed in the Active Directory database on the relevant domain server. It is also not possible to import user accounts — such an action would take no effect in case of a mapped domain.

13.2 Local user accounts

Local accounts are accounts created in the Administration Console or imported from a domain. These accounts are stored in the WinRoute’s configuration database (in the users.cfg file under the WinRoute’s installation directory). These accounts can be use- ful especially in domainless environments or for special purposes (e.g. firewall’s admin- istration).

Regardless on the method used for creation of the account, each user can be authenti- cated through the WinRoute’s internal database, Active Directory or NT domain.

A basic administrator account is created during the WinRoute installation process. This account has full rights for WinRoute administration. It can be removed if there is at least one other account with full administration rights.

Warning:

1.All passwords should be kept safe and secret, otherwise they might be misused by an unauthorized person.

2.If all accounts with full administration rights are removed and connection to Admin- istration Console is closed, it is not possible to connect to the WinRoute administra-

186

Page 185 Page 187
Page 186
Image 186
Kerio Tech Firewall6 manual Local user accounts, Accounts mapped from the Active Directory domain, Edit User, 186
Page 185 Page 187