Defender 5.9.3 - Administration Guide

Getting started Managing Defender objects in Active Directory Configuring security tokens Securing VPN access Securing Web sites Securing Windows-based computers Defender Management Portal (Web interface) Securing PAM-enabled services Delegating Defender roles, tasks, and functions Automating administrative tasks Administrative templates Integration with Active Roles Integration with Cloud Access Manager Appendices
Appendix A: Enabling diagnostic logging Appendix B: Troubleshooting common authentication issues Appendix C: Troubleshooting DIGIPASS token issues Appendix D: Defender classes and attributes in Active Directory Appendix E: Defender Event Log messages Appendix F: Defender Client SDK Appendix G: Defender Web Service API

Roles tab

Roles tab

Use the Roles tab to assign the Defender Management Portal roles to the Active Directory groups you want. A portal role defines the actions available to the role holder in the Defender Management Portal.

You can assign the following portal roles:

  • Administrator
  • Helpdesk
  • Read-Only Helpdesk
  • Reports

For more information, see Portal roles.

To assign a portal role, click the magnifying glass button next to the role, and then select the Active Directory group from the list.

In the domain where the Defender Management Portal is installed, the Domain Admins group always has the Administrator portal role assigned, regardless of what group you specify in the Administrator option on the Roles tab.

Log Receiver Service tab

Log Receiver Service tab

Use the Log Receiver Service tab to manage the Defender Log Receiver service. This service retrieves log files from the Defender Security Servers to the Defender Management Portal computer. The Defender Management Portal uses the retrieved log files to display authentication statistics and Defender Security Server warning messages and logs.

On this tab, you can use the following elements:

  • Service status  Shows the current status of the Defender Log Receiver service.
  • Restart  Restarts the Defender Log Receiver service. This button is only available when the service is running.
  • Stop  Stops the Defender Log Receiver service. This button is only available when the service is running.
  • Start  Starts the Defender Log Receiver service. This button is only available when the service is stopped.
  • Communication port  Specifies the port on which the Defender Log Receiver Service connects to the Defender Security Servers. The default port is TCP 13131. The Defender Management Portal automatically creates a rule in Windows Firewall to allow traffic on port specified in this text box. The rule is automatically updated when you change the port number.
  • DSS log cache size limit (MB)  Specifies the maximum size of the Defender Security Server log cache (.dat) file that is located on each Defender Security Server. The default maximum file size is 1000 MB. When the specified maximum file size is reached, older contents in the .dat file are overwritten. For more information, see Defender Security Server log cache.
  • Log Receiver Service database size limit (MB)  Specifies the maximum size of each Log Receiver Service database (.sdf) file that stores log data from the corresponding Defender Security Server. A separate .sdf file is created on the Defender Management Portal computer for each Defender Security Server. The default maximum size set for each .sdf file is 1000 MB. For more information, see Log Receiver Service database.

Reports tab

Reports tab

Use the Reports tab to specify folder for storing log files of the Defender Security Servers deployed in your environment. These log files are used to generate Defender reports. Use the DSS logs location text box to type the local or UNC path to the log files.

Portal roles

Portal roles

A portal role defines the actions available to the role holder in the Defender Management Portal. You can assign the following portal roles to users:

  • Administrator
  • Helpdesk
  • Read-Only Helpdesk
  • Reports

The next table provides information about the actions that a particular role allows its holder to perform in the Defender Management Portal. For instructions on how to assign portal roles to users, see Configuring the portal.

 

Table 16:

Defender Management Portal roles

Action

Administrator

Helpdesk

Read-Only Helpdesk

Reports

View authentication statistics on the Dashboard

Yes

Yes

Yes

No

Configure Defender Management Portal

Yes

No

No

No

View Defender Security Server logs and warnings

Yes

Yes

Yes

No

View token requests from users

Yes

No

No

No

Configure self-service for users

Yes

No

No

No

Use Helpdesk to diagnose authentication issues

Yes

Yes

Yes

No

Use Helpdesk to resolve authentication issues

Yes

Yes

No

No

Manage users

Yes

No

No

No

Manage security tokens

Yes

No

No

No

View Defender reports

Yes

No

No

Yes

Documentos relacionados