Security

User Security

Session timeout: Specify the period of inactivity after which a User will be required to sign in again.
Number of incorrect sign-in attempts allowed (before lock out): The number of times an individual User (i.e. with a specific username) can attempt to sign in with an incorrect password before he is locked out. Only a User with "Can Edit User Properties" rights can unlock a locked-out User.
Number of concurrent sessions allowed per User: Maximum number of simultaneous sessions allowed per User.
User password expires: Number of days that passwords are valid. You can also set passwords to never expire.
User password minimum length: The minimum number of characters required in a password.
User password requires both letters and numbers: Letters (a-z, A-Z) as well as numbers (0-9) must be used as part of the password.
User password requires both upper and lower case characters: Upper and lower case characters must be used.
User password requires non-alphanumeric characters: Passwords must include non-alphanumeric characters.

For greater security, enforce stringent password requirements: minimum 8 characters, include both numbers and letters, use upper and lower case, include non-alphanumeric characters, and expire regularly.

A note about being signed in as two Users at once: Remember that Firefox sets session cookies on a per-process basis, and not on a per-window basis. This means that if for some reason you want to be signed in as two Users at the same time, you will either have to use two different browsers (if one of them is Firefox), or sign in from two separate computers.

If a User gets locked out for a particular reason (too many failed sign-in attempts, for example), and no User remains with the sufficient rights to unlock that account, please contact Trend Micro for assistance.

Terms and Conditions

You can configure Deep Security Manager so that users must agree to terms and conditions before they can sign in to the Deep Security Manager:

To enable this feature, select User must agree to the terms and conditions. In the two text boxes, enter a title and the list of terms and conditions that will be displayed when a user clicks the Terms and Conditions link on the Sign In page.

Sign In Page Message

Enter text that will be displayed on the Vulnerability ProtectionDeep Security Manager's sign in page.

Trusted Certificates

Click View Certificate List to view a list of all security certificates accepted by Vulnerability ProtectionDeep Security Manager.

Key Pair Generation

Before adding a Microsoft Azure resource to Vulnerability ProtectionDeep Security Manager, you will need to generate a certificate and key pair. After generating the required files, you will import the certificate (.cer file) into Azure Web Services Console. You will upload the key pair (.pem file) to Vulnerability ProtectionDeep Security Manager when you add you Microsoft Azure resources.

To create a certificate and key pair:

In the Vulnerability ProtectionDeep Security Manager, go to Administration > System Settings > Security.
Under Key Pair Generation, click Generate Key Pair.
Click Create Key Pair.
Save the .pem file locally.
Click Export Certificate.
Save the .cer file locally.
Click Close.