Dell SonicWALL Secure Mobile Access 8.5
Administration Guide
286
•Mask Partially – Substitute the masking character for the all digits in the number, except the last
few digits such that the confidentiality of the number is still preserved.
• Mask Fully – Substitute the masking character for all digits in the number.
•Block – Do not transmit or display the number at all, even in masked format.
5 Below the table, in the Block sensitive information within HTML pages text box, type confidential
text strings that should not be revealed on any Web site protected by Web Application Firewall. This text
is case insensitive, can include any number of spaces between the words, but cannot include wildcard
characters. Add new phrases on separate lines. Each line is pattern matched within any HTML response.
6 When finished, click Accept.
Configuring Session Management Settings
Under Session Management, you can control whether the logout dialog window is displayed when a user logs
into the user portal or into an application offloaded portal. You can also set the inactivity timeout for users in
this section.
To configure session management settings:
1 Expand the Session Management section.
2Select Launch Logout Dialog Window after Login to display the session logout popup dialog box when
the user portal is launched or when a user logs into an application offloaded portal.
3In the Global Inactivity Timeout field, type the number of inactive minutes allowed before the user is
logged out. This setting can be overridden by Group or User settings.
4 When finished, click Accept.
Configuring Web Application Firewall Signature
Actions
The Web Application Firewall > Signatures page allows you to configure custom handling or exclusion of
certain hosts on a per-signature basis. You can use signature-based exclusions to apply exclusions for all hosts
for each signature.
NOTE: To mitigate CSRF attacks, it is important to keep a low idle timeout value for user
sessions, such as 10 minutes.
To Next Page
Loading...
Need help?
General
