User guide

ManualsBrandsWatchguard ManualsComputer equipmentFirebox X4500

User Guide ix

Use Microsoft CA to create a certificate............................................................................................... 176

Send the certificate request ................................................................................................................ 176

Issue the certificate................................................................................................................................. 177

Download the certificate...................................................................................................................... 177

About using certificates on the Firebox X Edge .................................................................................... 177

Import a certificate ...................................................................................................................................... 177

Use a local certificate ............................................................................................................................. 177

Remove a certificate.................................................................................................................................... 178

Examine the properties of a certificate ................................................................................................ 178

Related questions ............................................................................................................................................. 178

Can I sign my own certificates?.......................................................................................................... 178

I have a certificate or CSR that is not in the format I need. What do I do?.......................... 178

What is the maximum number of certificates I can import on the Firebox X Edge?...... 178

If I make a backup of my Firebox X Edge configuration, are my certificates saved? ...... 178

Chapter 13 User and Group Management ..............................................................................................179

About user licenses .......................................................................................................................................... 179

When a user license is used...................................................................................................................... 179

Managing user sessions............................................................................................................................. 180

How users authenticate........................................................................................................................ 181

Set authentication options for all users ............................................................................................... 182

Configure an individual user account .................................................................................................. 183

Require users to authenticate to the Edge ......................................................................................... 184

Authenticate a session without administrative access ............................................................. 185

Create a read-only administrative account ................................................................................... 185

Use the built-in administrator account ........................................................................................... 186

Set a WebBlocker profile for a user........................................................................................................ 186

Change a user account name or password ........................................................................................ 187

About using third-party authentication servers............................................................................... 188

Configure the LDAP/Active Directory authentication service..................................................... 189

Use the LDAP authentication test feature .......................................................................................... 190

Configure groups for LDAP authentication........................................................................................ 190

Add a group for LDAP authentication.................................................................................................. 191

Set a WebBlocker profile for an LDAP group ..................................................................................... 192

LDAP authentication and Mobile VPN with IPSec............................................................................ 192

About Single Sign-On (SSO)..................................................................................................................... 192

Before You Begin..................................................................................................................................... 193

Install the WatchGuard Single Sign-On (SSO) agent.................................................................. 194

Download the SSO agent software .................................................................................................. 194

Install the SSO agent service............................................................................................................... 195

See active sessions and users ....................................................................................................................... 197

Firebox user settings................................................................................................................................... 197

Active sessions .............................................................................................................................................. 197

Local User account ...................................................................................................................................... 198

Editing a user account........................................................................................................................... 199

Deleting a user account........................................................................................................................ 199

Allow internal devices to bypass user authentication ........................................................................ 199

Chapter 14 WebBlocker ............................................................................................................................201

About WebBlocker ........................................................................................................................................... 201

Download the server software........................................................................................................... 204

Install Quarantine Server and WebBlocker Server ...................................................................... 204

About WebBlocker profiles ........................................................................................................................... 204

See whether a site is categorized........................................................................................................... 207