Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
381
4 To block the specified user or users from logging into the appliance, select Disable login.
5 Optionally select Enable client certificate enforcement to require the use of client certificates for
login. By checking this box, you require the client to present a client certificate for strong mutual
authentication. Two additional fields appear:
• Verify user name matches Common Name (CN) of client certificate - Select this check box to
require that the user’s account name match their client certificate.
• Verify partial DN in subject - Use the following variables to configure a partial DN that matches
the client certificate:
• User name: %USERNAME%
• Domain name: %USERDOMAIN%
• Active Directory user name: %ADUSERNAME%
• Wildcard: %WILDCARD%
6 To require the use of one-time passwords for the specified user to log in to the appliance, select Require
one-time passwords.
7 Enter the user’s email address into the E-mail address field to override any address provided by the
domain. For more information about one-time passwords, see One Time Password Overview on page 46.
8 To apply the policy you selected to a source IP address, select an access policy (Allow or Deny) in the
Login From Defined Addresses drop-down list under Login Policies by Source IP Address, and then
click Add under the list box. The Define Address window is displayed.
9In the Define Address window, select one of the source address type options from the Source Address
Type drop-down list.
• IP Address - Enables you to select a specific IP address.
NOTE: To configure email to external domains (for example, SMS addresses or external webmail
addresses), you need to configure the SMTP server to allow relaying between the SMA/SRA
appliance and that domain.
To Next Page
Loading...
