The following sections explain how to use the policies available to Mac OS X devices.
In Mac OS X, ALF is located in Mac System Preferences.
1. |
a. |
Log in to the K1000 Administrator Console, http://K1000_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
2. |
In the Mac section, click Application Layer Firewall to display the Mac Application Layer Firewall page. |
A name that identifies the script. This name appears on the Scripts page. | |
Enable the firewall to drop packages that are denied without sending error messages to requesters. | |
4. |
5. |
6. |
7. |
Most of these settings require a reboot or logout and login to take effect.
1. |
a. |
Log in to the K1000 Administrator Console, http://K1000_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
2. |
A name that identifies the script. This name appears on the Scripts page. | |
Prevent words identified as profanity from being displayed in the dictionary on target devices. | |
If you select Allow access only to these websites, provide the URLs of the websites you want to approve. Users on target devices can only access approved websites. |
4. |
5. |
6. |
7. |
Use this template to create scripts that configure security options on Mac OS X devices.
Security options are available in Mac System Preferences.
Most of these settings require a reboot or log out and log in to take effect.
1. |
a. |
Log in to the K1000 Administrator Console, http://K1000_hostname/admin. Or, if the Show organization menu in admin header option is enabled in the appliance General Settings, select an organization in the drop-down list in the top-right corner of the page next to the login information. |
b. |
2. |
A name that identifies the script. This name appears on the Scripts page. | |
4. |
5. |
6. |
7. |
To allow provisioning, you must open the firewall and configure security settings.
reg add HKLM\SYSTEM\CurrentControlSet\Control\Lsa /v ForceGuest /t REG_DWORD /d 0 /f
netsh.exe firewall set service type=FILEANDPRINT mode=ENABLE scope=ALL
netsh.exe firewall set service type=REMOTEADMIN mode=ENABLE scope=ALL
When appliance software updates are available, they are advertised on the appliance Dashboard.
The appliance security status is provided in the security run output email.
The K1000 security run output is automatically emailed to the system administrator every day at 02:00.
The following example shows the content of the security run output.
© 2021 Quest Software Inc. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy