Authenticating remote users | Surf Control 5.2.4 guide

2

SYSTEM SETTINGS

User Management

6Choose the server that will provide the authentication for this user from the ‘Server’ drop-down list.

7Click Add>>. This will add it to the list pane on the right. To remove a server, select it and click <<Remove.

8Click Submit to put the new settings into effect or Reset if you want to cancel the modifications made to the current settings.

Authenticating remote users

To authenticate remote users you first need to configure an LDAP connection and then add the user’s domain to RiskFilter:

1Configure an LDAP connection. See “User Directories” on page 13 for information on how to do this.

2Select User Management > User Authentication from the System Settings tab.

3Click Add.

4Enter a name for the account into the Description field. This is limited to 64 characters.

5Choose the domain that this user belongs to from the Domain list box.

6Click Add>>. This will add it to the list pane on the right. To remove a domain, select it and click <<Remove.

7Select the LDAP connection you have just created from the Directory drop down menu.

8Click Add>>. This will add it to the list pane on the right. To remove a server, select it and click <<Remove.

9Click Submit to put the new settings into effect or Reset if you want to cancel the modifications made to the current settings.

Note: Remote users will need to configure their mail clients to authenticate to the Riskfilter server when sending mail. They should use their email address as the username and their network password.

54 Administrator’s Guide

SurfControl RiskFilter - E-mail V5.2.4

Image 59

Surf Control 5.2.4 manual Authenticating remote users

Contents

SurfControl RiskFilter E-mail Contents Policy Manager Riskfilter System Management Console Appendix Chapter Managing Your Messages with Riskfilter HOW Riskfilter Works Relay Control ConnectionControl Mail Exchanger IP Address MX Preference Load Balancing with Riskfilter Load balancing with RiskFilter Https//hostnameoripaddress10000 Launching Surfcontrol RiskfilterRiskfilter System Management Console Opening the RiskFilter Management Console Riskfilter Management Console AdministratorHttps//hostnameoripaddress/admin Before YOU Start System Settings Terminology Used System Settings TABWhat can be Configured in the System Settings TAB? Postmaster e-mail address ConfigurationSelect General Configuration from the System Settings tab General Smtp greeting Other SettingsAdmin Console Session Timeout Editing User Directories User Directories Open the User Directories screen Deleting a User Directory Click Add in the User Directories screen Microsoft Active Directory Select IBM Ldap Server IBM Ldap server Click Add in the User Directories screen Select Generic Ldap Generic Ldap Esmtp Server Information Validation settings Local Database Recipient File To add a local database Click Add Local Database Add/Edit Address screen is displayed Select General Secure Proxy from the System Settings tabSecure Proxy Select Enable Imap Proxy Select Enable POP3 ProxySelect Enable Webmail Proxy Logs and Archives Setting up the storage directoriesSelect General Directories from the System Settings tab Notifications Certificate Certificate Signing Request Select General Certificate from the System Settings tabImporting Certificates Exporting Certificates Connection Control Receive SettingsConnection Settings Allow Access List Smtp Greeting Delay 16 The Directory Attack Control screen Directory Attack Control Controlling relaying of messages SPF Authentication ConfigurationRelay Control Allowing relaying to specific domains Relay for Internal Senders Add validation servers Recipient ValidationAdding details of domains 19 The Message Control screen Message Control 20 Set what action is taken on messages Exception Control To configure exception control Adding an IP or subnet address to the blacklist Black List Adding domain or e-mail addresses to the blacklist Importing and exporting Lists Dynamic White List White ListAdding an IP or subnet address to the White List Receive Settings Delivering the messages Send SettingsSetting up the destination domains DOMAIN-BASED Delivery Select Forward mail to the following Smtp servers Using TLS authentication Transport Layer Security Advanced Delivery Traffic Control Send Settings Account Manager User Management Specifying Administrator Access Changing the Administrator Account Password Setting up Administrator Access Select Account Manager from the User Management menu Editing Administrator AccountsPersonal E-MAIL Manager Setting up the PEM message 31 What the user sees Personal E-mail Manager Importing lists of users Adding usersExporting lists of users User List End-user Bypass Anti-Spam SettingSetting up End User Control END-USER Control Authenticating PEM users User Authentication Authenticating remote users Update NOW License & Updates AVA and ASA License Expired Updating your Anti-Spam Agent Definitions Updating the Anti-Virus Agent Scheduled UpdateSelect the Anti-Virus Agent Update check box Updating Component Licenses Select the Anti-Spam Agent Update check boxLicense Status Updating the Anti-Spam Agent Viewing component licenses Update ServerManually setting up a license server User Number Exceeded License Server Submitting a Support Request Admin Guide Contact SupportSelect Help Contact Support from the System Settings tab Help Configuration Wizard Firstboot Wizard KEY Points Key Points Policy Manager Policy Manager TAB What can be Configured in the Policy Manager TAB? Defining the Action Creating a PolicyDefining Users Global Policy Filter List Defining the Rules Importing and Exporting Lists Address Group Deleting Address Groups Adding Queues Queue Manager Select Queue Manager from the Policy Manager tab Editing a Queue Editing SurfControl Dictionary properties Dictionary ManagerSurfcontrol Dictionaries Deleting a word or phrase Changing the value of words in the SurfControl DictionariesAdding words to the SurfControl Dictionaries Create a new dictionary Custom Dictionaries Importing a SurfControl Dictionary Pack Importing Dictionaries Worthlesstab space15 balancetab space10 Creating a unicode text file Select Import from a Unicode text file Importing a unicode text fileExporting a dictionary Creating a NEW SUB-POLICY Global Policy 15 Enter the details of the new Sub-policy Select Global Policy from the Policy Manager tab Adding Filters to the Policy Editing a SUB-POLICYDeleting a SUB-POLICY 18 The Global Policy Filter List screen Defining a Filter Select Global Policy Filters from the Policy Manager tab ANTI-VIRUS Agent FilterCreating a new filter Editing the Anti-Virus Agent Filter Global Policy Select Anti-Spam Agent DFP ANTI-SPAM Agent Filters Select Anti-Spam Agent Heuristics Configuring the Anti-Spam Agent Heuristics Filter Select Anti-Spam Agent LexiRules Configuring the Anti-Spam Agent LexiRules Filter 23 The Internet Threat Database Filter screen Internet Threat Database Filter Select the Internet Threat Database Filter and click Next Standard DisclaimerEditing the Internet Threat Database Filter Select the Standard Disclaimer Filter Editing the Standard Disclaimer Filter Select the General Content Filter and click Next General Content FilterEditing the General Content Filter Select the Advanced Content Filter and click Next Advanced Content FilterEditing the Advanced Content Filter 27 The Expression screen Using the Expression List Using Logical Operators Occur gateway Assume Frequency =2 Examples showing the use of OperandsRiskFilter and Gateway and Innovation RiskFilter or Gateway or Innovation 28 Message Attachment Filter screen Message Attachment Filter Select the Message Attachment Filter and click Next Editing the Message Attachment Filter Select the Internet Content Guardian Filter and click Next Content GuardianCreating a new Content Guardian filter Adding a filtering rule How the Dictionary Threshold Filter works Dictionary Threshold FilterDeleting a filtering rule Select the Dictionary Threshold Filter and click Next Configuring the Dictionary Threshold Filter Global Policy KEY Points Key Points Reports & Logs Reports and Logs TAB What can be Configured in the Reports and Logs TAB? Server status monitoring Dashboard Select Specified date range from the Logs for list box Master ReportQuerying the Master Report Select Master Report from the Reports and Logs tab Master Report Querying the Message Report Message Report Querying the Policy Report Policy Report Querying the Virus Report Virus Report Querying the Spam Report Spam Report Querying the Connection Report Connection Report Connection Report System Report Click View Messages Isolated MessagesManaging Isolated Messages Select Isolated Messages from the Reports and Logs tab Isolated Messages Select Virus Messages from the Reports and Logs tab Virus MessagesManaging the Virus Messages 14 An Archived message Select Spam Messages from the Reports and Logs tab Spam MessagesManaging Spam Messages To view a message click the subject Select Archived Messages from the Reports and Logs tab Archived MessagesManaging Archived Messages Export Messages Click Reprocess Messages Reprocess MessagesView Messages 19 Select the check box alongside the message Select Deferred Messages from the Reports and Logs tab Deferred MessagesQuerying Deferred Messages 22 An Archived message KEY Points Key Points RiskFilter System Management Console Overview What can be Configured with the System Management CONSOLE? Rfmngr Account Accessing the Riskfilter System Management Console Webmin TAB What can be Configured in the Webmin TAB? Webmin Actions LOG Webmin ConfigurationIP access control Select Webmin Configuration from the Webmin tab Ports and Addresses Select Language from the Webmin Configuration screenSelect Logging from the Webmin Configuration screen Language Select Webmin Servers Index in the Webmin Webmin Servers IndexProxy Servers Adding Webmin Servers System TAB What can be Configured in the System TAB? Historic System Statistics Bootup and ShutdownChange Passwords Select Change Passwords in the System tab Select Multi Gateway Policy Routing in the System tab Multi Gateway Policy Routing Network Interfaces Network Configuration Enter an IP Address Multi-NIC configuration in RiskFilterSetting up additional NICs Routing and Gateways 11 The Create Bootup Interface screen DNS Client Select DNS Client from the Network Configuration tab 15 Host Addresses Host Addresses Select System Time in the System tab Running ProcessesSystem Time Click Sync system time System and Server Status Riskfilter TAB What can be Configured in the Riskfilter TAB? Riskfilter Backup Manager Riskfilter Services Manager Click Complete Riskfilter Cluster Wizard 25Load balancing Load balancing with RiskFilter 26 RiskFilter in a cluster set up Select Web Access Manager in the RiskFilter tab Riskfilter WEB Access Manager 28 The Update RiskFilter-E-mail screen Update Riskfilter E-MAIL KEY Points Key Points Appendix # sudo /etc/init.d/smgd status Using the Command Line Interface QTOOL.SH Clean queues Using the Command Line Interface Using the Command Line Interface Using the Command Line Interface Example 6 uninstalling the RiskFilter software UNINSTALL.SH All items were successfully uninstalled Productivity Categories Internet Threat Database CategoriesInternet Theat Database Categories Core / Liability Categories Core / Liability Categories Productivity Categories Other Special Events Index Administrator’s Guide SurfControl RiskFilter E-mail SurfControl RiskFilter E-mail Administrator’s Guide OpenSSL Sun RPC Apache Software License, Version Expat XML Parser Toolkit SPFJava Ldap