Table of Contents
Advertisement
4
To block the specified user or users from logging into the appliance, select Disable login.
5
Optionally select Enable client certificate enforcement to require the use of client certificates for
login. By checking this box, you require the client to present a client certificate for strong mutual
authentication. Two additional fields appear:
•
Verify user name matches Common Name (CN) of client certificate - Select this check box to
require that the user's account name match their client certificate.
•
Verify partial DN in subject - Use the following variables to configure a partial DN that matches
the client certificate:
•
User name: %USERNAME%
•
Domain name: %USERDOMAIN%
•
Active Directory user name: %ADUSERNAME%
•
Wildcard: %WILDCARD%
6
To require the use of one-time passwords for the specified user to log in to the appliance, select Require
one-time passwords.
7
Enter the user's email address into the E-mail address field to override any address provided by the
domain. For more information about one-time passwords, see
NOTE:
To configure email to external domains (for example, SMS addresses or external webmail
addresses), you need to configure the SMTP server to allow relaying between the SMA/SRA
appliance and that domain.
8
To apply the policy you selected to a source IP address, select an access policy (Allow or Deny) in the
Login From Defined Addresses drop-down list under Login Policies by Source IP Address, and then
click Add under the list box. The Define Address window is displayed.
9
In the Define Address window, select one of the source address type options from the Source Address
Type drop-down list.
•
IP Address - Enables you to select a specific IP address.
One Time Password Overview
Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
on page 46.
381
Advertisement
Chapters
Table of Contents
Troubleshooting
