Table of Contents
Advertisement
System menu features
Management menu
Enter the maximum number of authentications that may be cached at one time in the Maximum Cached
4
Authentications field.
Note:
When t
cache before they have expired, resulting in increased lo
Select a Default Group for the service. When an authentication source is unable to provide enough detail
5
about a user for the UTM Firewall appliance to assign that user permissions, the permissions of the group
specified here will be used instead.
Note:
A default group must be specified for TACACS+.
[Optional] De-select the Override Default Group checkbox if you want the UTM Firewall appliance to
6
always use the default group permissions even when user information is available to the authentication
source.
Click Submit to save your changes.
7
You can clear any changes made to the PAM table by clicking the Clear Authentication Cache button.
PAM statistics
In order to alert administrators to suspicious login activity, the PAM tab tracks successful and failed login
attempts in two tables at the bottom of the page. The first table lists login attempts by user. The second
table lists login attempts by service.
Management menu
The Management menu provides configuration options that control how the UTM Firewall appliance is
managed. Configuration options include settings for the web administration server, command line access,
and remote access. The UTM Firewall appliance can be managed remotely using the McAfee UTM Firewall
Control Center, or the Simple Network Management System (SNMP).
Note:
If you have Intrusion Detection enabled and configured, and want to use the Management features, you
must manually delete the snmp entry in the IDB > UDP port list. For more information, see
Systems.
Web configuration
You can enable or disable HTTP protocols, change HTTP port numbers, and create or upload certificates for
securing access to the Management Console via HTTPS on the Web page.
Ideally, you should use packet filter rules to restrict access for remote administration. For information, see
Packet
filtering. Using packet filter rules, you can configure the appliance so that only connections
originating from trusted IP addresses are allowed access to the administrative Web server port.
Configuring the Management Console
Use this procedure to configure access to the Management Console.
Caution:
Do not disable both HTTP and HTTPS access to the Management Console or you will not be able to access
the Management Console. See
the Management Console.
McAfee UTM Firewall 4.0.4 Administration Guide
he Maximum Cached Authentications value is reached, authentications will be removed from the
Re-enabling Management Console access
ad on the authentication servers.
for instructions on regaining access to
Intrusion Detection
343
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
