Settings

Use this page to control the common behavior, irrespective of the authentication method used.

Navigation: SERVICES > Authentication > Settings.

Settings
Login timeout (minutes)

The inactivity period after which the user is logged out. The default time-out is 10 (minutes).

Concurrent login sessions
(per user)

How many times a user can attempt to log in.
Logging level

Determines the level of authentication logging:

  • Normal - Logs user login and LDAP server information.
  • Verbose - As Normal, but also request, response and result information. This is useful when troubleshooting authentication issues.
Normalize usernames

Determines whether all variations of username and domain are normalized into the same format. For example, Active Directory prefers DOMAIN\user, but can accept user, user@domain.com, DOMAIN.COM\user, DOMAIN\user.

The Smoothwall stores the user-supplied username in the configured directory server’s preferred format. This reduces the number of forms of a username to one, preventing users circumventing temporary bans by using a different format of username for example. For a detailed description of each preferred format, see the help topic, Managing directories.

If you're migrating configuration from another Smoothwall installation, this setting is turned off by default. It ensures that log searches and reports based on usernames work correctly and any temporary bans, applied before the migration, still apply. You can then turn this feature on at a convenient time.

Users identified by BYOD

are subject to firewall rules

that make use of groups.

Determines whether you can create Smoothwall Firewall rules for groups that contain bring-your-own-device (BYOD) clients, to allow them access to other segments of your internal network.

Unless BYOD clients need access to other parts of your internal network through the Smoothwall, we recommend that you turn this off.

IDex settings
IDex Cluster nodes A list of IP addresses of the Smoothwall Filter and Firewall hardware appliances that share authentication information. The IDex Cluster shares the information received from the IDex Client and the IDex Agent among all nodes in a Central Management cluster (see the help topic, Setting up a centrally managed system), so that web filtering requests can be load-balanced among them. If your Smoothwall makes use of the ID Indexing System and Central Management features, you must enter the IP addresses of all nodes, including this node's IP address.

Clear IDex directory

Clears user and group authentication information from the IDex Directory. All information is removed up to the point in time the clear request was made. The Clear operation will log off any users currently logged into the system. Therefore, we recommend that you perform this operation when there's minimal user activity.
Users identified by IDex
Client or IDex Agent are
subject to firewall rules that
make use of groups.
Determines whether you can create Smoothwall Firewall rules for groups that contain IDex-identified users requiring access to other segments of your internal network. Unless IDex-identified users do need to access other segments of your internal network specifically through the Smoothwall, we recommend that you leave this option off.

Read more

About global authentication settings

Things you can do here

Configuring global authentication settings

Watch the video

Authentication Overview

Something not right? .