1
3 Enter the Firewall’s Domain Name.
An option is available to auto-append the HA/Clustering suffix to the firewall name.
4 Enter the login name for the administrator in the Administrator Login Name field.
5 Specify the maximum number of days after which the a password expires and must be updated in the Password must be changed every (days) field.
6 Specify the number of previous passwords that are remembered and that a new password cannot match in the Bar repeated passwords for this many changes field.
7 Select New password must contain 4 characters different from the old password to make the user create a password that has four different characters than the old one if they are changing the password.
8 Specify the minimum password length in the Enforce a minimum password length of field.
9 Select the level of password complexity from the Enforce Password Complexity pull-down list. You can select one of the following:
•
10 Select Administrators to apply these password constraints only to full and read-only administrators.
11 Select Other full administrators to apply these password constraints to all administrators with local passwords.
12 Select Limited administrators to apply these password constraints to all local users with limited administrator privileges.
13 Select Other local users to apply these password constraints only to non-administrator users.
14 Specify how long the SonicWALL appliance(s) wait (in minutes) before logging out inactive administrators in the Log out the Administrator after inactivity of field.
15 To lockout the SonicWALL appliance after user login failure, select Enable administrator/user lockout. Then, specify the number of login failure attempts that must occur before the user is locked out in the Failed login attempts per minute before lockout field and how long the user will be locked out in the Lockout Period field.
16 The On preemption by another administrator setting configures what happens when one administrator preempts another administrator using the Multiple Administrators feature. The preempted administrator can either be converted to non-config mode or logged out. Configure the following options:
• Drop to non-config mode - move the preempted administrator to non-configuration mode
• Log out - log out the preempted administrator.
• Allow preemption by a lower priority administrator after inactivity of (minutes) - Enter the number of minutes of inactivity by the current administrator that allows a lower-priority administrator to preempt.
• Enable inter-administrator messaging - Select to allow administrators to send text messages through the management interface to other administrators logged into the appliance. The message will appear in the browser’s status bar.
• Messaging polling interval (seconds) - Sets how often the administrator’s browser will check for inter-administrator messages. If there are likely to be multiple administrators who need to access the appliance, this should be set to a reasonably short interval to ensure timely delivery of messages.
17 If you wish to use HTTP management, Allow management via HTTP is available to allow the administrator to enable/disable HTTP management globally.
18 For secure HTTPS management, click Enable Suite B Mode in HTTPS and fill the form as necessary. Specify the type of certificate that is being used for the firewall, and the type of curve and Cipher method being used for the certificate.
19 The Download URL section provides fields for specifying the URL address of a site for downloading the SonicPoint images. SonicOS Enhanced 5.0 and higher does not contain an image of the SonicPoint firmware. If your Dell SonicWALL appliance has Internet connectivity, it will automatically download the correct version of the SonicPoint image from the Dell SonicWALL server when you connect a SonicPoint device. If your Dell SonicWALL appliance does not have Internet access, or has access only through a proxy server, you must manually specify a URL for the SonicPoint firmware. You do not need to include the http:// prefix, but you do need to include the filename at the end of the URL. The filename should have a .bin extension.
• If you are configuring a SonicWALL appliance at the unit level, enter and reenter the new SonicWALL password. Then, enter the SonicWALL GMS password and click Change Password. The password is changed.
• If you are configuring a SonicWALL appliance at the group or global level, enter the SonicWALL GMS password and click Change Password. Each SonicWALL appliance will receive a unique randomly generated password. This unique password is encrypted and recorded in the SonicWALL GMS database.
At the non-unit level, passwords can be configured in two ways:
• The user can specify a specific password which will be assigned to all the appliances in the node (not recommended).
To have GMS assign random passwords, leave the New SonicWALL Password and Confirm New SonicWALL Passwords fields empty.
21 When you are finished, click Update. A task gets spooled and after it is executed successfully, the settings are updated for the selected SonicWALL appliances.