McAfee UTM Firewall 4.0.4 Administration Guide
343
System menu features
Management menu
4
Enter the maximum number of authentications that may be cached at one time in the Maximum Cached
Authentications field.
Note:
When t
he
Maximum Cached Authentications
value is reached, authentications will be removed from the
cache before they have expired, resulting in increased lo
ad on the authentication servers.
5
Select a Default Group for the service. When an authentication source is unable to provide enough detail
about a user for the UTM Firewall appliance to assign that user permissions, the permissions of the group
specified here will be used instead.
Note:
A default group must be specified for .
6
[Optional] De-select the Override Default Group checkbox if you want the UTM Firewall appliance to
always use the default group permissions even when user information is available to the authentication
source.
7
Click Submit to save your changes.
You can clear any changes made to the PAM table by clicking the Clear Authentication Cache button.
PAM statistics
In order to alert administrators to suspicious login activity, the PAM tab tracks successful and failed login
attempts in two tables at the bottom of the page. The first table lists login attempts by user. The second
table lists login attempts by service.
Management menu
The Management menu provides configuration options that control how the UTM Firewall appliance is
managed. Configuration options include settings for the web administration server, command line access,
and remote access. The UTM Firewall appliance can be managed remotely using the McAfee UTM Firewall
Control Center, or the Simple Network Management System (SNMP).
Note:
If you have Intrusion Detection enabled and configured, and want to use the Management features, you
must manually delete the snmp entry in the IDB > UDP port list. For more information, see
Intrusion Detection
Systems
.
Web configuration
You can enable or disable HTTP protocols, change HTTP port numbers, and create or upload certificates for
securing access to the Management Console via HTTPS on the Web page.
Ideally, you should use packet filter rules to restrict access for remote administration. For information, see
Packet filtering
. Using packet filter rules, you can configure the appliance so that only connections
originating from trusted IP addresses are allowed access to the administrative Web server port.
Configuring the Management Console
Use this procedure to configure access to the Management Console.
Caution:
Do not disable both HTTP and HTTPS access to the Management Console or you will not be able to access
the Management Console. See
Re-enabling Management Console access
for instructions on regaining access to
the Management Console.
Содержание SG310
Страница 1: ...McAfee UTM Firewall Administration Guide version 4 0 4...
Страница 10: ...10 McAfee UTM Firewall 4 0 4 Administration Guide...
Страница 127: ...McAfee UTM Firewall 4 0 4 Administration Guide 127 Network Setup menu options DHCP Server Figure 130 DHCP Addresses page...
Страница 148: ...148 McAfee UTM Firewall 4 0 4 Administration Guide Network Setup menu options SIP...
Страница 238: ...238 McAfee UTM Firewall 4 0 4 Administration Guide Firewall menu options Antispam TrustedSource...
Страница 372: ...372 McAfee UTM Firewall 4 0 4 Administration Guide System menu features Advanced menu...
Страница 410: ...410 McAfee UTM Firewall 4 0 4 Administration Guide Index...
Страница 411: ......
Страница 412: ...700 2237A00...