Views:
IMSVA provides a configuration wizard to help you configure all the settings you need to get IMSVA up and running.

Procedure

  1. On the management computer, open a supported web browser.
  2. Type the following URL (accept the security certificate if necessary):
    https://<target server IP address>:8445
    The Log On screen appears.
  3. Select the Open Configuration Wizard check box.
  4. Type the following default user name and password:
    • User name: admin
    • Password: imsva
    The Configuration Wizard screen appears.
Related information

Configuring System Settings Parent topic

Procedure

  1. Click Next.
    The Local System Settings screen appears.
  2. Modify the device host name, internal communication port, IP address, and netmask if necessary. Also, configure your network settings and set the device system time.
    Note
    Note
    The local system settings take effect immediately when you click the Next > button. If the IP address or time settings are changed, IMSVA will restart. Wait until IMSVA is online and then log on again.

Configuring Deployment Settings Parent topic

Procedure

  1. Click Next.
    The Deployment Settings screen appears.
  2. Select Parent Device or Child Device.
    • Parent Device: If this is the first device you are setting up, you must select this option. You can configure additional child devices at a later time. Also, decide if you want to use the NTP service.
    • Child Device: If you select this option, specify the parent management console settings. Make sure the user account you use here has full administration rights.

Configuring SMTP Routing Parent topic

Procedure

  1. Click Next.
    The SMTP Routing screen appears.
  2. Specify the incoming message settings. See Specifying Message Rules.
  3. Specify the message delivery settings. See Specifying Message Delivery Settings.

Configuring Notification Settings Parent topic

Procedure

  1. Click Next.
    The Notification Settings screen appears.
  2. Under Email Settings, configure the following:
    • To address(es): Specify the recipient email addresses.
    • Sender's email address: Specify the email address to appear as the sender.
    • Server name or IP address: Specify the Fully Qualified Domain Name (FQDN) or the IP address of the SMTP server that delivers email on the network.
    • SMTP server port: Specify the port number that IMSVA uses to connect to the SMTP server.
    • Preferred charset: IMSVA will use this setting to encode the notification messages.
    • Message header: Specify the text to appear at the top of the notification.
    • Message footer: Specify the text to appear at the bottom of the notification.
  3. Under SNMP Trap, configure the following:
    Note
    Note
    SNMP Trap is the notification message sent to the Simple Network Management Protocol (SNMP) server when events that require administrative attention occur.
    • Server name: Specify the FQDN or IP address of the SNMP server.
    • Community: Specify the SNMP server community name.
    • SNMP version: Select SNMPv1 or SNMPv2c.
    Note
    Note
    Community is the group that computers and management stations running SNMP belong to. To send the alert message to all SNMP management stations, specify public as the community name. For more information, refer to the SNMP documentation.

Configuring the Update Source Parent topic

Procedure

  1. Click Next.
    The Update Source screen appears.
  2. Configure the following update settings, which will determine from where IMSVA will receive its component updates and through which proxy (if any) IMSVA needs to connect to access the Internet:
    Option Description
    Source
    Click Trend Micro ActiveUpdate server to receive updates directly from Trend Micro. Alternatively, click Other Internet source and specify the URL of the update source that will check the Trend Micro ActiveUpdate server for updates. You can specify an update source of your choice or type the URL of your Control Manager server http://<IP address of Control Manager server or CQDN>/ Tvcs Download/ActiveUpdate/, if applicable.
    Proxy Settings
    Select the Use a proxy server for pattern, engine, and license updates, Web Reputation queries, certificate validation check, and communication with Cloud Pre-Filter, Trend Micro Email Encryption, and the Time-of-Click Protection service check box and configure the proxy type, server name, port, user name, and passwords.

Configuring LDAP Settings Parent topic

Specify LDAP settings only if you will use LDAP for user-group definition, administrator privileges, or End-User Quarantine authentication.

Procedure

  1. Click Next.
    The LDAP Settings screen appears.
  2. Specify a meaningful description for the LDAP server.
  3. Complete the following to enable LDAP settings:
    1. For LDAP server type, select one of the following:
      • Domino
      • Microsoft Active Directory
      • Microsoft AD Global Catalog
      • Open LDAP
      • Sun iPlanet Directory
    2. To enable one or both LDAP servers, select the check boxes next to Enable LDAP 1 or Enable LDAP 2.
    3. Specify the names of the LDAP servers and the port numbers they listen on.
    4. Under LDAP cache expiration for policy services and EUQ services, specify a number that represents the time to live next to the Time to Live in minutes field.
    5. Under LDAP admin, specify the administrator account, its corresponding password, and the base-distinguished name. See the following table for a guide on what to specify for the LDAP admin settings.

      LDAP Server Types

      LDAP Server
      LDAP Admin Account (examples)
      Base Distinguished Name (examples)
      Authentication Method
      Active Directory™
      Without Kerberos: user1@domain.com (UPN) or domain\user1
      With Kerberos: user1@domain.com
      dc=domain, dc=com
      Simple
      Advanced (with Kerberos)
      Active Directory Global Catalog
      Without Kerberos: user1@domain.com (UPN) or domain\user1
      With Kerberos: user1@domain.com
      dc=domain, dc=com
      dc=domain1,dc=com (if mutiple unique domains exist)
      Simple
      Advanced (with Kerberos)
      OpenLDAP
      cn=manager, dc=test1, dc=com
      dc=test1, dc=com
      Simple
      Lotus Domino™
      user1/domain
      Not applicable
      Simple
      Sun™ iPlanet Directory
      uid=user1, ou=people, dc=domain, dc=com
      uid=user1, ou=people, dc=domain, dc=com
      Simple
    6. For Authentication method, click Simple or Advanced authentication. For Active Directory advanced authentication, configure the Kerberos authentication default realm, Default domain, KDC and admin server, and KDC port number.
    7. Select the Enable encrypted communication between IMSVA and LDAP check box and click Browse to upload a CA certificate file to verify the certificate used by the LDAP server.

Configuring Internal Addresses Parent topic

IMSVA uses the internal addresses to determine whether a policy or an event is inbound or outbound.
  • If you are configuring a rule for outgoing messages, the internal address list applies to the senders.
  • If you are configuring a rule for incoming messages, the internal address list applies to the recipients.

Procedure

  1. Click Next.
    The Internal Addresses screen appears.
  2. To define internal domains and user groups, do one of the following:
    • Select Enter domain from the drop-down list, specify the domain in the text box, and then click >>.
    • Select Search for LDAP groups from the drop-down list. A screen for selecting the LDAP groups appears. Specify an LDAP group name to search in the text box and click Search. The search result appears in the list box. To add it to the Selected list, click >>.
    • Click the Import button to import a text file containing a list of predefined domains.
    Note
    Note
    IMSVA can only import a domain list from a text file (.txt). Ensure that the text file contains only one domain per line. You can also use wildcard characters to specify the domain. For example, *.com or *.example.com.

Configuring Control Manager Server Settings Parent topic

Procedure

  1. Click Next.
    The TMCM Server Settings screen appears.
  2. If you will use Control Manager to manage IMSVA, do the following:
    1. Enable the agent (installed with IMSVA by default).
    2. Next to Server, specify the Control Manager IP address or FQDN.
    3. Next to Communication protocol, select HTTP or HTTPS and specify the corresponding port number.
      The default port number for HTTP access is 80, and the default port number for HTTPS is 443.
    4. Under Web server authentication, specify the user name and password for the web server if it requires authentication.
    5. If a proxy server is between IMSVA and Control Manager, select Enable proxy.
    6. Specify the proxy server port number, user name, and password.

Activating the Product Parent topic

Procedure

  1. Click Next.
    The Product Activation screen appears.
  2. To obtain an Activation Code, click Register Online and follow the directions at the Trend Micro Registration website.
  3. After obtaining the applicable Activation Codes, specify the Activation Code for each product or service to activate.

Verifying Settings Summary Parent topic

Procedure

  1. Click Next.
    The Review Settings screen appears.
  2. If the settings are correct, click Finish.
    To modify any specified setting, click Back and make changes.
Keywords: SMTP routing,configure,internal addresses,product settings,Deployment Settings,notification settings,Control Manager server settings,update source,accessing,System Settings