Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Request a Demo
Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Request a Demo
Services
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

Database Security

Prevent unauthorized access and exceed compliance requirements.

Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

View All Trustwave Services
Solutions
BY INDUSTRY
BY REGULATION
BY TOPIC
Microsoft Security
Unlock the full power of Microsoft Security
Offensive Security
Solutions to maximize your security ROI
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
We reduce cyber risk and fortify organizations
Awards and Accolades
Recognition by analysts and media outlets
Trustwave SpiderLabs Team
Global researchers, ethical hackers, and responders
Trustwave Fusion Security Operations Platform
Unprecedented security visibility and control
Trustwave Security Colony
Access to cybersecurity threat protection resources
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Register
Login
Resources
BLOGS
UPCOMING
MEDIA & ASSETS
NOTICES
HELP
Loading...
Loading...

Trustwave Knowledge Base

Home » Knowledgebase » Trustwave MailMarshal (SEG) » PRB: SQM or Customer Console "Remember Me" not working

PRB: SQM or Customer Console "Remember Me" not working

Expand / Collapse
Show/Hide Article Tools


This article applies to:

  • Trustwave MailMarshal (SEG) 6.4 and above
  • Trustwave SPE/MailMarshal SPE 2.3 and above 
  • Trustwave ECM/MailMarshal Exchange 7.X
  • Spam Quarantine Management website
  • Quarantine Management website
  • SPE Customer Console and SQM
  • Forms authentication

Symptoms:

  • Remember Me is selected on the site login page
  • User credentials are only remembered for a short time of inactivity. Users are asked to enter credentials after about 20 minutes. 
  • With SPE, the "Default Session Timeout" setting in the Admin Console cannot be used to extend the Customer Console timeout to more than 20 minutes.

Causes:

  • The Remember Me function uses ASP.NET authentication cookies. By default the cookies time out after 20 or 30 minutes, depending on the version of ASP.NET originally installed.
  • Trustwave recommends you maintain the default timeout for security reasons.

Resolution:

To extend the timeout, change the forms authentication configuration settings for the affected web sites or virtual directories.

Notes:

  • If you have more than one SQM web server or SPE Customer Console server, you must perform these steps on each web server.
  • For SPE, you must configure the SQM virtual directory as well as the Customer Console site. The site setting is not inherited by the SQM directory/application.
  1. On the web server, open IIS Manager.
  2. Navigate to the properties of the virtual directory or website you want to configure.
    • For SEG SQM, by default, this is Default Web Site/SpamConsole
    • For ECM quarantine management, by default, this is MailMarshal Exchange Web Components/QuarantineConsole
    • For SPE Customer Console, by default, this is the website Customer Console
    • For SPE SQM, by default, this is Customer Console/SQM
       

       
  3. In the IIS section, double-click Authentication.
  4. On the Authentication page, select Forms Authentication and then click Edit (from the right pane Actions list).
     

     
  5. On the Forms Authentication Settings window, set the authentication cookie time-out to a longer value (in minutes). Ensure that Extend cookie expiration is checked.
  6. Click OK.
  7. When you have changed all required settings, exit IIS manager.
  8. For SPE, remember to change the "Default Session Timeout" setting in the Admin Console.

Notes:

  • This problem does not affect Windows authentication.

To contact Trustwave about this article or to request support:

Rate this Article:
     

Add Your Comments


Comment submission is disabled for anonymous users.
Please send feedback to Trustwave Technical Support or the Webmaster.


Execution: 0.031. 9 queries. Compression Disabled.
Powered by InstantKB.NET