Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

Administrator accounts

Created: 17 Aug 2009 • Updated: 28 Jan 2013 | 9 comments
toby's picture
8 Agree
1 Disagree
+7 9 Votes
Login to vote
Status: In Development

Hi all,

the SBG Appliance handles administrator accounts locally on the machine.
So it is not possible to enforce a password guideline or something like that.

Based on the possibility to use a Directory Server it would be very helpful to use Directory user accounts to manage the appliance.
Beside the local admin, support and root account this account management would be useful in some environments.

Thank you in advance

Comments 9 CommentsJump to latest comment

Cricket17's picture

and the Unix admin and support accounts aren't root either.

As far as GUI account, yes,  using LDAP to authenticate could be useful.

0
Login to vote
toby's picture

there are 3default account on the appliances admin, support and root.
admin is your default account which can be used. the suppor as well as root must be enabled and can be used in support cases by the symantec supporter.
this accounts are as far as I understand local appliance accounts which are coverd using RHEL methods (shadows, passwd, users, groups)

the other kind of users are the accounts you use manage the appliance which could be added using the web console.
this accounts are stored in the database.
from the point of a directory sync or a connection to a directory server i think one good possibility is the use of directory accounts.

------------------------------------------------------------------

Best regards!

toby

CISSP / STS / MCP 

+1
Login to vote
Ian McShane's picture

Thanks for your comments, this request has been captured. 

//ian

0
Login to vote
Amanda Grady's picture

A quick update on your suggestion - we are planning to add support for LDAP authenticated adminstration accounts in Symantec Messaging Gateway 10.5.

+1
Login to vote
Code Breaker's picture

Hi Amanda,

When we would expect SMG version 10.5 to be published to the customer?

0
Login to vote
Amanda Grady's picture

Unfortunately we are not able to publicly release development timelines for legal and financial reasons.

0
Login to vote
Code Breaker's picture

The development timelines is very important to us to update our higher management. This has impact for license renewal & ease your account manager & technical consultant when answer such question by our top management.

0
Login to vote
toby's picture

Thanks for the update!

Sounds good to have this capability as Usermanagement is getting also more and more an issue for those critical devices and LDAP can be helpful for this in setting the right policy for the user in terms of password/locked-state etc.!

------------------------------------------------------------------

Best regards!

toby

CISSP / STS / MCP 

0
Login to vote
ederaprigio's picture

Hi guys!

How to use Directory user accounts to manage the appliance?

I updated in my enviromento from  SMG 10.0.3-3 to 10.5.1 and I'd like to use this feature.

Tks!

0
Login to vote