Web Security - Mimecast Security Agent Settings

Updated
This article describes how to configure your Mimecast Security Agent settings from the Administration Console, to protect users' devices while they aren't connected to your corporate network (e.g. using a public Wi-Fi hotspot), and is intended for use by Administrators.

With the Mimecast Security Agent settings configured and the Mimecast Security Agent authentication key created, you can install the Mimecast Security Agent software.
There are separate installation guides for:

Creating an Authentication Key

The authentication agent key is used to associate the Mimecast Security Agent with your Mimecast account and is used when installing each Mimecast Security Agent.

You can create a security agent authentication key by using the following steps:

  1. Log on to the Mimecast Administration Console.
  2. Navigate to Web Security | Agent Settings.
  3. In the Installation tab, click on Create Key button. This generates an active authentication key.

The Windows and Mac installer download will include the active key.

If you delete the active authentication key, all deployed agents will no longer operate.

A new key must be created, and the agent must be redistributed to all previously protected devices.

The following buttons are available after the key is created:

      • Copy Key: This copies the key to your clipboard.
      • Download Key: This downloads the key to your browser's download location with a file name of "CustomerKey."
      • Delete Key: This deletes the key and is only available if your logon has a Super Administrator, Full Administrator, or Partner Administrator role. When clicked, confirm the key's deletion by clicking on the Delete button.

Configuring Mimecast Security Agent Settings 

You can configure settings for the Mimecast Security Agent by using the following steps:

  1. Log on to the Mimecast Administration Console.
  2. Navigate to Web Security | Agent Settings.
  3. Click on the Settings tab.
  4. Enable/Disable the following options:
Field/Option Default Value Description
User Authentication Enabled

Users can authenticate and log in to the Mimecast Security Agent using their domain or cloud login credentials. If users are authenticated:

  • Their activity is logged and reported.
  • User-level policies are applied to their logon.
Enforce User Authentication Disabled If enabled, users are prompted to authenticate and log on to the Mimecast Security Agent. This notification persists until the authentication and login process is complete.
Transparent User Identification Enabled If enabled, users are automatically identified by the Mimecast Security Agent. See Transparent User ID.

We recommend this option is enabled.
Manage Updates Disabled If enabled, users are prompted when a Mimecast Security Agent update is available. Users can click the update option to initiate an update.

An automatic update option is available for Windows MSA. 1.10 or higher.
Automatic Device Enrollment for URL Protect Disabled Automatically enrolls Windows devices to Targeted Threat Protection - URL Protect. See Automatic Device Enrollment.
Direct IP Protection Disabled If enabled, this blocks IP connections that occur without a DNS request. This excludes IPs in your Exceptions List.

 

Mimecast Security Agent Passwords

The Mimecast Security Agent restricts users from disabling the protection on their device unless they've been given the disabler password.
You can optionally disable the Uninstaller Password to allow the user to uninstall without needing the uninstaller password.

Use of the uninstall password is currently only available on Windows or Mac devices. You can disable this protection using the Mimecast Security Agent 1.6 or later for Windows. If disabled, older Windows agents and all Mac agents still require the password to uninstall.

When setting the passwords, consider the following recommendations:

      • Generate a new disabler password once an end user has disabled the Mimecast Security Agent on their device.
      • Do not share the uninstaller password with end users.

To set the security agent's passwords:

  1. Log on to the Mimecast Administration Console.
  2. Navigate to Web Security | Agent Settings.
  3. Click on the Passwords tab.
  4. Set the Disabler Password:
    Field / Option Description
    Current Password These fields display the current and previous disabled passwords. By default, the fields have their values hidden but can be displayed by clicking on the eye icon to the right of the field. Previous Password is only displayed if the Generate New Password button is clicked.
    Previous Password
    Copy Password Click on this button to copy the currently disabled password to your clipboard.
    Generate Password Click on this button to create a password. The new password value is displayed in the Current Password field, and the old one is displayed in the Previous Password field.
  5. Set the Uninstaller Password:
    Field / Option Description
    Current Password This field displays the current uninstall password. By default, the field has its value hidden but can be displayed by clicking on the eye icon to the right of the field.
    Copy Password Click on this button to copy the password to your clipboard.
    Generate Password Click on this button to create an uninstall password. The new password value is displayed in the "Current Password" field. You will need to toggle Uninstaller Password to Enabled for this field to be visible.

Related to

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.