New Enforce Configurations
TCP & TLS Syslog Export Capability
Note: An Enforcer must be on Enforce Build 284 to access this feature.
Users can now export logs via TCP and TLS. To do so:
- Navigate to the Syslog tab of the applicable Enforcer
- Click the “New” button in the top right corner of the Configuration pane
- Select the desired Protocol from the Protocol drop-down
- Enter the Host and Port (required)
- Select the desired log types to export
- Choose the desired Network, Verdict, and Direction (All is the default selection)
- If TLS is selected, provide the required certificate
- Click the “Create” button in the bottom right corner
- Once all Syslog Servers are configured, click the “Save” button in the top right corner
SSH Password Reset Capability
Note: An Enforcer must be on Enforce Build 284 to access this feature.
Company Master user accounts can now reset the SSH password tied to an Enforce installation directly from their Portal account. This will help facilitate the scenario of when the access credentials of an Enforce instance is forgotten. To reset the SSH password:
- Navigate to the Enforcers tab
- From the ellipsis menu in the far right column, select Reset Console Password
- On the confirmation modal, click “Reset”
Enforce WiFi Configurations
Note: An Enforcer must be on Enforce Build 284 to access this feature.
Users with WiFi installations now have the below configurations available to them in the Portal.
Enforce can have 0, 1, or multiple wireless “devices”. Devices correspond to the physical radio(s). Each device can have 0, 1, or multiple “interfaces”. Interfaces are the wireless networks (SSID, PSK, etc.). If Enforce has no wireless devices, the WIFI option property in the instance configuration panel will not display. Devices and interfaces cannot be created or deleted in the Portal. This can only happen on the device itself.
Device Configurations:
Users can choose a default Country Location (for transmit and receive power settings) and Active Channel from the applicable drop-downs for each WiFi device.
Once the desired selections are made, the user should click on the Save button in the top right corner.
Interface Settings:
Each wireless device interface can be enabled on or off, via the toggle underneath the Interface name.
The SSID, PSK, and Encryption can be modified for each interface.
- SSID must be between 1 and 32 characters
- PSK must be between 8 and 63 characters
- Encryption - a valid value should be selected from the drop-down. Please note that ThreatER only supports configured WiFi with pre-shared keys in Portal; however, it is possible that the user configured different wireless security on the device. If this happens, it will NOT be available in the drop-down. In the Portal, users can either not change encryption, or change it to one of the values in the Encryption drop-down, but they can’t change it to something that is not a value in the drop-down.
DHCP Settings
The following DHCP settings can be configured in Portal.
- Lease Range
- Range Start must be before Range End
- Both must be in the interface’s network
- DNS Servers
- IPs - a maximum of 4 entries can be provided
The Leases, Name, and Interface that display in this configuration tab are all read-only.
Command Logs for User Login & Logout
For better auditing purposes, Command Logs are now being generated when a user logins and logouts of the Portal.
Comments
0 comments
Please sign in to leave a comment.