Advanced

WebAdmin Idle Timeout

Log out after: In this field you can specify the period of time (in seconds) how long a WebAdmin session can remain idle before you are forced to log in again. By default, the idle timeout is set to 1,800 seconds. The range is from 60 to 86,400 seconds.

Log out on dashboard: By default, when you have opened the Dashboard page of WebAdmin, the auto logout function is enabled. You can, however, select this option to disable the auto logout function for Dashboard only.

WebAdmin TCP Port

By default, port 4444 is used as WebAdmin TCP port. In the TCP Port box you can enter either 443 or any value between 1024 and 65535. However, certain ports are reserved for other services. In particular, you can never use port 10443, and you cannot use the same port you are using for the User Portal or for SSL remote access. Note that you must add the port number to the IP address (separated by a colon) in the browser's address bar when accessing WebAdmin, for example https://192.168.0.1:4444

Terms of Use

Your company policies might demand that users accept terms of use when they want to access WebAdmin. Select the checkbox Display "Terms of Use" after login to enforce that users must accept the terms of use each time they log in to WebAdmin. Users will then be presented the terms of use after having logged in. If they do not accept them they will be logged out again.

You can change the terms of use text according to your needs. Click Apply to save your settings.

Sophos Adaptive Learning

You can help improving Sophos UTM on AWS by allowing it to transfer anonymous general information of your current configuration as well as information about detected viruses, or anonymous application fingerprints to Sophos. That kind of information cannot and will not be tracked back to you. No user-specific information is collected, i.e., no user or object names, no comments, or other personalized information. However, URLs for which a virus was found will be transmitted if web filter antivirus scanning is enabled.

The information is encrypted and transmitted to SophosLabs using SSL. Once delivered, the data is stored in an aggregated form and made available to the software architects of Sophos for making educated design decisions and thus improve future versions of Sophos UTM on AWS.

Send anonymous telemetry data: If enabled, Sophos UTM on AWS gathers the following information:

The data is sent every 24 hours.

Send anonymous application accuracy telemetry data: You can help to improve the recognition and classification abilities of network visibility and application control by participating in the Sophos UTM on AWS AppAccuracy Program. If enabled, the system will collect data in form of anonymous application fingerprints and will send that to the research team of Sophos. There the fingerprints will be used to identify unclassified applications and to improve and enlarge the network visibility and application control library.

Send error reports: If enabled, a report will be sent to Sophos in case of a malfunction, for example if a service restarts unexpectedly. In some cases, malfunctions may go unnoticed, therefore we recommend to enable this function to inform Sophos about such issues.

Services which may be affected are:

Information sent to Sophos for example:

"DownloadedPatternVersion" => nil,

"EC2Identity" => {

"architecture" => "x86_64",

"availabilityZone" => "us-east-1e",

"billingProducts" => nil,

"devpayProductCodes" => nil,

"imageId" => "ami-00000000",

"instanceType" => "t2.small",

"kernelId" => nil,

"pendingTime" => "2017-03-21T09:35:57Z",

"ramdiskId" => nil,

"region" => "us-east-1",

"version" => "2010-08-31"

"Environment" => "production",

"FactoryResets" => 0,

"InstalledPattern_Version" => nil,

"TimewarpsDetected" => 0,

"UTM_BUILD" => "asg-9.412.1-release.iso",

"UTM_VERSION" => "9.412000",

"Up2DatesApplied" => 0,

"Up2DatesAppliedFiles" => [],

"Up2DatesAvailable" => 0,

"Up2DatesAvailableFiles" => [],

"UserData" => {

"deployment_type" => "ha_warm_standby",

"instance_role" => "ha_standalone",

"region" => "us-east-1",

"version" => "0.1.0"}