User Management, Account Manager | Surf Control 5.2.4 manual

SYSTEM SETTINGS

User Management

2

USER MANAGEMENT

Once you have completed the initial configuration of SurfControl RiskFilter there are other settings to implement that are vitally important to enable the product to work at its best. SurfControl recommends that you enhance RiskFilter’s security in the following ways:

•Change the passwords to the Administrator accounts of the RiskFilter Console and RiskFilter Management Console.

•Set permissions for individual Administrators that will administer RiskFilter. In this way you can allow certain administrators to make departmental policy changes but stop them from administering the RiskFilter console itself.

There are two different accounts that are used to administer the RiskFilter appliance and they are both supplied with default passwords:

•RiskFilter Console administrator account – The default password for this account is admin - use the RiskFilter Console to change this.

•RiskFilter System Management Console administrator account – The default password for this account is rfmngr - use the RiskFilter Management Console to change this.

See See “Launching SurfControl RiskFilter” on page 6 for more information on how to start each of these consoles.

ACCOUNT MANAGER

The Administrator Account Manager enables you to manage the accounts of anyone who has access to RiskFilter. It enables you to:

•Add new accounts by clicking Add.

•Delete redundant accounts by selecting the account and clicking Delete.

•Edit existing accounts by clicking Edit alongside the account.

You can see these accounts in the Administrator Account Manager.

Figure 2 - 28 The Administrator Account Management screen

SurfControl RiskFilter - E-mail V5.2.4

Administrator’s Guide 45

Image 50

Surf Control 5.2.4 manual User Management, Account Manager

Contents

SurfControl RiskFilter E-mail Contents Policy Manager Riskfilter System Management Console Appendix Chapter HOW Riskfilter Works Managing Your Messages with Riskfilter Relay Control ConnectionControl Load Balancing with Riskfilter Mail Exchanger IP Address MX Preference Load balancing with RiskFilter Https//hostnameoripaddress10000 Launching Surfcontrol RiskfilterRiskfilter System Management Console Opening the RiskFilter Management Console Riskfilter Management Console AdministratorHttps//hostnameoripaddress/admin Before YOU Start System Settings Terminology Used System Settings TABWhat can be Configured in the System Settings TAB? General ConfigurationSelect General Configuration from the System Settings tab Postmaster e-mail address Session Timeout Other SettingsAdmin Console Smtp greeting User Directories Editing User Directories Deleting a User Directory Open the User Directories screen Microsoft Active Directory Click Add in the User Directories screen IBM Ldap server Select IBM Ldap Server Generic Ldap Click Add in the User Directories screen Select Generic Ldap Validation settings Esmtp Server Information Recipient File Local Database To add a local database Click Add Local Database Add/Edit Address screen is displayed Select General Secure Proxy from the System Settings tabSecure Proxy Select Enable Imap Proxy Select Enable POP3 ProxySelect Enable Webmail Proxy Logs and Archives Setting up the storage directoriesSelect General Directories from the System Settings tab Certificate Notifications Exporting Certificates Select General Certificate from the System Settings tabImporting Certificates Certificate Signing Request Connection Control Receive SettingsConnection Settings Smtp Greeting Delay Allow Access List Directory Attack Control 16 The Directory Attack Control screen Controlling relaying of messages SPF Authentication ConfigurationRelay Control Allowing relaying to specific domains Relay for Internal Senders Add validation servers Recipient ValidationAdding details of domains Message Control 19 The Message Control screen Exception Control 20 Set what action is taken on messages To configure exception control Black List Adding an IP or subnet address to the blacklist Importing and exporting Lists Adding domain or e-mail addresses to the blacklist Dynamic White List White ListAdding an IP or subnet address to the White List Receive Settings DOMAIN-BASED Delivery Send SettingsSetting up the destination domains Delivering the messages Using TLS authentication Transport Layer Security Select Forward mail to the following Smtp servers Traffic Control Advanced Delivery Send Settings User Management Account Manager Changing the Administrator Account Password Specifying Administrator Access Setting up Administrator Access Select Account Manager from the User Management menu Editing Administrator AccountsPersonal E-MAIL Manager Setting up the PEM message 31 What the user sees Personal E-mail Manager Importing lists of users Adding usersExporting lists of users END-USER Control End-user Bypass Anti-Spam SettingSetting up End User Control User List User Authentication Authenticating PEM users Authenticating remote users License & Updates Update NOW Updating your Anti-Spam Agent Definitions AVA and ASA License Expired Updating the Anti-Virus Agent Scheduled UpdateSelect the Anti-Virus Agent Update check box Updating the Anti-Spam Agent Select the Anti-Spam Agent Update check boxLicense Status Updating Component Licenses Viewing component licenses Update ServerManually setting up a license server License Server User Number Exceeded Help Admin Guide Contact SupportSelect Help Contact Support from the System Settings tab Submitting a Support Request Firstboot Wizard Configuration Wizard KEY Points Key Points Policy Manager What can be Configured in the Policy Manager TAB? Policy Manager TAB Defining the Action Creating a PolicyDefining Users Defining the Rules Global Policy Filter List Address Group Importing and Exporting Lists Deleting Address Groups Queue Manager Adding Queues Editing a Queue Select Queue Manager from the Policy Manager tab Editing SurfControl Dictionary properties Dictionary ManagerSurfcontrol Dictionaries Deleting a word or phrase Changing the value of words in the SurfControl DictionariesAdding words to the SurfControl Dictionaries Custom Dictionaries Create a new dictionary Importing Dictionaries Importing a SurfControl Dictionary Pack Creating a unicode text file Worthlesstab space15 balancetab space10 Select Import from a Unicode text file Importing a unicode text fileExporting a dictionary Global Policy Creating a NEW SUB-POLICY Select Global Policy from the Policy Manager tab 15 Enter the details of the new Sub-policy Adding Filters to the Policy Editing a SUB-POLICYDeleting a SUB-POLICY Defining a Filter 18 The Global Policy Filter List screen Editing the Anti-Virus Agent Filter ANTI-VIRUS Agent FilterCreating a new filter Select Global Policy Filters from the Policy Manager tab Global Policy ANTI-SPAM Agent Filters Select Anti-Spam Agent DFP Configuring the Anti-Spam Agent Heuristics Filter Select Anti-Spam Agent Heuristics Configuring the Anti-Spam Agent LexiRules Filter Select Anti-Spam Agent LexiRules Internet Threat Database Filter 23 The Internet Threat Database Filter screen Select the Internet Threat Database Filter and click Next Standard DisclaimerEditing the Internet Threat Database Filter Editing the Standard Disclaimer Filter Select the Standard Disclaimer Filter Select the General Content Filter and click Next General Content FilterEditing the General Content Filter Select the Advanced Content Filter and click Next Advanced Content FilterEditing the Advanced Content Filter Using the Expression List 27 The Expression screen Using Logical Operators RiskFilter or Gateway or Innovation Examples showing the use of OperandsRiskFilter and Gateway and Innovation Occur gateway Assume Frequency =2 Message Attachment Filter 28 Message Attachment Filter screen Editing the Message Attachment Filter Select the Message Attachment Filter and click Next Select the Internet Content Guardian Filter and click Next Content GuardianCreating a new Content Guardian filter Adding a filtering rule How the Dictionary Threshold Filter works Dictionary Threshold FilterDeleting a filtering rule Configuring the Dictionary Threshold Filter Select the Dictionary Threshold Filter and click Next Global Policy KEY Points Key Points Reports & Logs What can be Configured in the Reports and Logs TAB? Reports and Logs TAB Dashboard Server status monitoring Select Master Report from the Reports and Logs tab Master ReportQuerying the Master Report Select Specified date range from the Logs for list box Master Report Message Report Querying the Message Report Policy Report Querying the Policy Report Virus Report Querying the Virus Report Spam Report Querying the Spam Report Connection Report Querying the Connection Report Connection Report System Report Select Isolated Messages from the Reports and Logs tab Isolated MessagesManaging Isolated Messages Click View Messages Isolated Messages Select Virus Messages from the Reports and Logs tab Virus MessagesManaging the Virus Messages 14 An Archived message Select Spam Messages from the Reports and Logs tab Spam MessagesManaging Spam Messages To view a message click the subject Select Archived Messages from the Reports and Logs tab Archived MessagesManaging Archived Messages Export Messages Click Reprocess Messages Reprocess MessagesView Messages 19 Select the check box alongside the message Select Deferred Messages from the Reports and Logs tab Deferred MessagesQuerying Deferred Messages 22 An Archived message KEY Points Key Points RiskFilter System Management Console What can be Configured with the System Management CONSOLE? Overview Accessing the Riskfilter System Management Console Rfmngr Account What can be Configured in the Webmin TAB? Webmin TAB Select Webmin Configuration from the Webmin tab Webmin ConfigurationIP access control Webmin Actions LOG Language Select Language from the Webmin Configuration screenSelect Logging from the Webmin Configuration screen Ports and Addresses Adding Webmin Servers Webmin Servers IndexProxy Servers Select Webmin Servers Index in the Webmin What can be Configured in the System TAB? System TAB Select Change Passwords in the System tab Bootup and ShutdownChange Passwords Historic System Statistics Multi Gateway Policy Routing Select Multi Gateway Policy Routing in the System tab Network Configuration Network Interfaces Enter an IP Address Multi-NIC configuration in RiskFilterSetting up additional NICs 11 The Create Bootup Interface screen Routing and Gateways Select DNS Client from the Network Configuration tab DNS Client Host Addresses 15 Host Addresses Select System Time in the System tab Running ProcessesSystem Time System and Server Status Click Sync system time What can be Configured in the Riskfilter TAB? Riskfilter TAB Riskfilter Services Manager Riskfilter Backup Manager Riskfilter Cluster Wizard Click Complete Load balancing with RiskFilter 25Load balancing 26 RiskFilter in a cluster set up Riskfilter WEB Access Manager Select Web Access Manager in the RiskFilter tab Update Riskfilter E-MAIL 28 The Update RiskFilter-E-mail screen KEY Points Key Points Appendix Using the Command Line Interface # sudo /etc/init.d/smgd status Clean queues QTOOL.SH Using the Command Line Interface Using the Command Line Interface Using the Command Line Interface UNINSTALL.SH Example 6 uninstalling the RiskFilter software All items were successfully uninstalled Core / Liability Categories Internet Threat Database CategoriesInternet Theat Database Categories Productivity Categories Core / Liability Categories Productivity Categories Special Events Other Index Administrator’s Guide SurfControl RiskFilter E-mail SurfControl RiskFilter E-mail Administrator’s Guide OpenSSL Sun RPC Apache Software License, Version Expat XML Parser Toolkit SPFJava Ldap