Getting Started With Delegated Administration



Similar documents
Delegated Administration Quick Start

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

Configuring Network Load Balancing with Cerberus FTP Server

MTA Course: Windows Operating System Fundamentals Topic: Understand backup and recovery methods File name: 10753_WindowsOS_SA_6.

Installing Active Directory

How to Configure a Remote Desktop Licensing Server for vspace 6

Active Directory integration with CloudByte ElastiStor

Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

HOW TO CONFIGURE SQL SERVER REPORTING SERVICES IN ORDER TO DEPLOY REPORTING SERVICES REPORTS FOR DYNAMICS GP

Install SQL Server 2014 Express Edition

Server Manager Performance Monitor. Server Manager Diagnostics Page. . Information. . Audit Success. . Audit Failure

Basic Exchange Setup Guide

Releasing blocked in Data Security

System Area Management Software Tool Tip: Integrating into NetIQ AppManager

Create, Link, or Edit a GPO with Active Directory Users and Computers

Moving the Web Security Log Database

Basic Exchange Setup Guide

LT Auditor Windows Assessment SP1 Installation & Configuration Guide

Using Group Policies to Install AutoCAD. CMMU 5405 Nate Bartley 9/22/2005

PrivateWire Gateway Load Balancing and High Availability using Microsoft SQL Server Replication

Virtual Office Remote Installation Guide

Learn AX: A Beginner s Guide to Microsoft Dynamics AX. Managing Users and Role Based Security in Microsoft Dynamics AX Dynamics101 ACADEMY

Secrets of Event Viewer for Active Directory Security Auditing Lepide Software

Installing Logos SSL Certificates on Mobile Devices

Moving the TRITON Reporting Databases

Migrating MSDE to Microsoft SQL 2008 R2 Express

Managed Security Web Portal USER GUIDE

Configuring a Custom Load Evaluator Use the XenApp1 virtual machine, logged on as the XenApp\administrator user for this task.

Step-By-Step Guide to Deploying Lync Server 2010 Enterprise Edition

Centrify DirectManage: Group Policy Management

Creating a Domain Tree

Enterprise Server Setup Guide

Installing Lumension Endpoint Management and Security Suite (L.E.M.S.S.) Using a Remote SQL Server

To install the SMTP service:

V Series Rapid Deployment Version 7.5

Deploying System Center 2012 R2 Configuration Manager

BACKUP & RESTORE (FILE SYSTEM)

CIFS Permissions Best Practices Nasuni Corporation Natick, MA

Creating a New Domain Tree in the Forest

For Active Directory Installation Guide

DESLock+ Basic Setup Guide Version 1.20, rev: June 9th 2014

Important Notes for WinConnect Server VS Software Installation:

pcanywhere Advanced Configuration Guide

SSL Intercept Mode. Certificate Installation Guide. Revision Warning and Disclaimer

TechNote. Contents. Introduction. System Requirements. SRA Two-factor Authentication with Quest Defender. Secure Remote Access.

econtrol 3.5 for Active Directory & Exchange Administrator Guide

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Setup non-admin user to query Domain Controller event log for Windows2003

Microsoft Corporation. Project Server 2010 Installation Guide

Installing and Configuring SQL Express 2008 R2 for Supply Chain Guru

Password Manager Windows Desktop Client

How to install Small Business Server 2003 in an existing Active

Using WinSCP to Transfer Data with Florida SHOTS

How to Setup SQL Server Replication

BusinessObjects Enterprise XI Release 2

Cloud Attached Storage

Using Logon Agent for Transparent User Identification

Application Note 116: Gauntlet System High Availability Using Replication

Active Directory Change Notifier Quick Start Guide

Verify LDAP over SSL/TLS (LDAPS) and CA Certificate Using Ldp.exe

Install FileZilla Client. Connecting to an FTP server

Configuring a Windows 2003 Server for IAS

Installation Guide. Novell Storage Manager for Active Directory. Novell Storage Manager for Active Directory Installation Guide

H3C SSL VPN RADIUS Authentication Configuration Example

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

1 Download & Installation Usernames and... Passwords

Exchange 2003 Standard Journaling Guide

Changing Passwords in Cisco Unity 8.x

Creating Home Directories for Windows and Macintosh Computers

Virto Password Reset Web Part for SharePoint. Release Installation and User Guide

How to Install the Active Directory Domain Services (AD DS) Role in Windows Server 2008 R2 and Promote a Server to a Domain Controller

Preparing to Install SQL Server 2005

Installation Instruction STATISTICA Enterprise Server

Outlook Web App (Online)... 3 Outlook 2013 (Desktop) Apple Mail Mobile Devices Android iphone... 40

Installation Guide for Microsoft SQL Server 2008 R2 Express. October 2011 (GUIDE 1)

NetBeat NAC Version 9.2 Build 4 Release Notes

HIC.SOAP Network User Instructions last updated June 22, :39 AM

Automatic updates for Websense data endpoints

Also on the Performance tab, you will find a button labeled Resource Monitor. You can invoke Resource Monitor for additional analysis of the system.

PRODUCT WHITE PAPER LABEL ARCHIVE. Adding and Configuring Active Directory Users in LABEL ARCHIVE

Configuring Outlook for Windows to use your Exchange

Configuring Microsoft Active Directory for Cisco WAAS Encrypted MAPI Acceleration

Configure Managed File Transfer Endpoints

Quick Start for Network Agent. 5-Step Quick Start. What is Network Agent?

Talk Internet User Guides Controlgate Administrative User Guide

Customer admin guide. UC Management Centre

User Setup for SQL Security

Configuring Load Balancing

White Paper. Fabasoft Folio Thin Client Support. Fabasoft Folio 2015 Update Rollup 2

Parallels Plesk Panel

EventTracker: Support to Non English Systems

MANAGING OUTLOOK PERSONAL DATA FILES

DC Agent Troubleshooting

Hands-On Microsoft Windows Server 2008

How do I find my Outlook 2007 mailbox quota?

Appendix B Lab Setup Guide

Nagios XI Mass Deploy NSClient++

Understand Troubleshooting Methodology

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

Transcription:

Getting Started With Delegated Administration Delegated Administration (available with Websense v6.1 Corporate Editions) is a powerful tool for distributing filtering and reporting responsibilities for particular client sets, and across locations. However, you must do a few simple setup tasks first to take full advantage of this feature. Overview You ll need to do the following to set Delegated Administration in motion: If you have more than one Policy Server, determine which site will act as the central site and house the central Policy Server. Configure your directory service via Websense Manager (especially critical if you are running Active Directory in Native mode). Add directory objects to Websense Manager. Add at least one user to the Super Administrator role. Create roles to designate the Delegated Administrators who will manage groups of similar clients. Configure administrative permissions for the roles by editing the Web Filter Lock. If you have multiple Policy Servers, distribute the Web Filter Lock to ensure common policy restrictions across your organization. This tutorial explains how to get started. The Websense Enterprise Administrator s Guide provides detailed instructions for setting up Delegated Administration. I. Determine the central Policy Server The Web Filter Lock (see page 4) is configured by the Super Administrator at the central site, and then pushed to remote sites as needed. Make sure you know which server should be the central one! Define additional Policy Servers in Websense Manager: Server > Add Policy Server.

II. Configure the directory service To appoint the Super Administrator and Delegated Administrators, you add them as directory objects to administrative roles. 1. First, configure Websense to communicate with your directory service: Choose Server > Settings > Directory Service. See the User Identification chapter of the Websense Enterprise Administrator s Guide for full procedures. WARNING: If you are running Active Directory in Native Mode, but assign Delegated Administrators to roles while Websense is configured to communicate in Mixed Mode, those administrators will not be able to successfully log on to Websense to manage policy or run reports. You must also configure domain forest information so Websense recognizes directory objects correctly. III. Designate a Super Administrator When you first install Websense Corporate Edition, the default user is a root user with rights to set up other administrative roles. But only the Super Administrator s administrative actions are traceable via the Audit Log (see the Server Administration chapter of the Websense Enterprise Administrator s Guide). Roles (administrative permissions), system configuration, and certain filtering settings are managed by Super Administrators only. Add at least one user to the Super Administrator role before creating other roles: 1. In the navigation tree, expand Administration > Super Administrator. 2. Next to Managed Administrators, click Edit. 3. Select the directory object to designate as the Super Administrator, and then click Add. 4. Click OK.

IV. Configure Default Filtering Settings The Default Settings category set and Default Settings protocol set comprise the default filtering settings for all categories and protocols. These are copied and applied to any new role you create. To ensure that the desired default settings are copied to all roles, the Super Administrator should verify (and edit if necessary) the Default Settings category set and Default Settings protocol set before creating new roles. These serve as the basis for policies managed and assigned by Delegated Administrators. Delegated Administrators can modify settings, but may not need to. If necessary, Delegated Administrators can create new category sets and protocol sets based on the Default Settings category set and Default Settings protocol set. For example, your organization always sets quota time for Sports, Shopping, and Travel sites. You log on as the Super Administrator and edit the Default Settings category set so those categories are limited by quota. When you create a new role, the quota limit you just configured is carried over to that role. WARNING: Changing the values in the Super Administrator role s Default Settings category set and Default Settings protocol set after creating roles will not propagate the changes to the new roles.

V. Populate Administrative Roles As the Super Administrator, you create administrative roles, and then designate Delegated Administrators according to those roles. The Delegated Administrators for each role are assigned a set of clients (users, groups and workstations) to manage. Do the following while logged on as a Super Administrator. 1. Create Delegated Administrator roles: Right-click in the Websense Manager navigation tree, and choose Add New Role. 2. Designate Delegated Administrators: Select the role you just created. Next to Managed Administrators in the content pane, click Edit. Checking Policy enables the selected administrator to edit filtering policies governing this role. Checking Reporting enables this administrator to run internet usage reports. 3. Add clients for this Delegated Administrator to manage: In the navigation tree, select the role to which to add clients. Next to Managed Clients in the content pane, click Edit.

VI. Configure the Web Filter Lock The Super Administrator can restrict which filtering settings Delegated Administrators can modify via the Web Filter Lock. The Super Administrator sets certain categories and protocols to be Blocked & Locked. Delegated Administrators are prevented from granting their Managed Clients access to Blocked & Locked categories and protocols. Super Administrators and their Managed Clients are the only ones not restricted by the Web Filter Lock. To access the Web Filter Lock, expand Filter Definitions in the Websense Manager navigation tree. For detailed information on Delegated Administration and Delegated Reporting, see the Websense Enterprise Administrator s Guide, Websense Enterprise Reporting Administrator s Guide, or your online Help. Product documentation is available from: http://www.websense.com/global/en/supportandkb/productdocumentation/?section=all

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information