Quick Reference Guide
Chapter 5. Managing Users, Groups, and Authentication | 165
ProSecure Web/Email Security Threat Management (STM) Appliance
Requirements for the ProSecure DC Agent Software and
DC Agent Server
Note the following requirements for the ProSecure DC agent software and domain controller
(DC) servers:
• If the DC server is located behind a firewall or there is a firewall on the DC server, ensure
that the firewall does not block the server’s listening port. The default port that is used by
the DC agent is 5182.
• The DC agent needs to be able to automatically log an account login event when a
domain user account is authenticated against the LDAP directory on a DC server. Verify
that the DC server has the following configuration:
- The Audit Logon Events policy is defined and the Success check box is selected.
- The Audit Account Logon Events policy is defined and the Success check box is
selected.
- The Audit Account Management policy is defined and the Success check box is
selected.
In addition, if you change the log path of the security log, restart the DC server to bring
the change into effect.
• If you use the ProSecure DC Agent software on a DC server that is running Windows
Server 2003, ensure that Window’s Security Log settings in the Event Viewer are set to
the maximum size of 16 MB and to overwrite events as needed.
Downloading ProSecure DC Agent Software, and Creating
and Deleting DC Agents
When new ProSecure DC Agent software is available, the STM automatically downloads the
software from the update server and notifies administrative users in several ways:
• The STM sends an email to administrative users.
• The STM records a syslog entry.
• The STM generates a notification screen that is presented to administrative users upon
login.