Secure Mobile Access 100 10.2 Administration Guide
- Secure Mobile Access 10.2
- Introduction
- About This Guide
- New Features
- Deprecated Features
- Overview of SMA Components
- SMA Software Components
- SMA Hardware Components
- Client Versions Released with 10.2
- SMA 500v Virtual Appliances
- Increased Client Connections on SMA 210/410
- Capture ATP Integration Overview
- Always on VPN
- Encryption Overview
- SSL for Virtual Private Networking (VPN)
- SSL Handshake Procedure
- IPv6 Support Overview
- Portals Overview
- File Shares
- Domains Overview
- Application Offloading and HTTP(S) Bookmarks Overview
- Cross Domain Single Sign-On
- ActiveSync Authentication
- Network Resources Overview
- SNMP Overview
- DNS Overview
- Network Routes Overview
- NetExtender Overview
- What is NetExtender?
- Benefits of NetExtender
- NetExtender Concepts
- NetExtender and IPv6
- Two-Factor Authentication Overview
- One Time Password Overview
- End Point Control Overview
- Web Application Firewall Overview
- What is Web Application Firewall?
- Benefits of Web Application Firewall
- How Does Web Application Firewall Work?
- How are Signatures Used to Prevent Attacks?
- How is Cross-Site Request Forgery Prevented?
- How is Information Disclosure Prevented?
- How are Broken Authentication Attacks Prevented?
- How are Insecure Storage and Communications Prevented?
- How is Access to Restricted URLs Prevented?
- How are Slowloris Attacks Prevented?
- What Type of PCI Compliance Reports Are Available?
- How Does Cookie Tampering Protection Work?
- How Does Application Profiling Work?
- How Does Rate Limiting for Custom Rules Work?
- Restful API - Phase 1 Support
- Restful API - Phase 2 Support
- Navigating the Management Interface
- Deployment Guidelines
- Secure Mobile Access Dashboard
- Configuring Secure Mobile Access
- System Configuration
- System > Status
- System > Licenses
- System > Time
- System > Settings
- System > Administration
- System > Certificates
- System > Monitoring
- System > Diagnostics
- System > Restart
- System > About
- Network Configuration
- Portals Configuration
- Portals > Portals
- Portals > Application Offloading
- Portals > Domains
- Viewing the Domains Table
- Removing a Domain
- Adding or Editing a Domain
- Secure Hosts for Secure Network Detection
- Adding or Editing a Domain with Local User Authentication
- Adding or Editing a Domain with Active Directory Authentication
- Adding or Editing a Domain with RADIUS Authentication
- Adding or Editing a Domain with Digital Certificates
- Adding a Domain with SAML 2.0 Authentication
- Configuring SAML Authentication
- Configuring Two-Factor Authentication
- DUO Security Authentication Support for NetExtender and Mobile Connect Clients
- Portals > Load Balancing
- Portals > URL Based Aliasing
- System Configuration
- Configuring Services and Clients
- Services Configuration
- Services > Settings
- Services > Bookmarks
- Terminal Services (RDP-HTML5 and Native)
- Terminal Services (RDP-HTML5)
- Virtual Network Computing (VNC-HTML5)
- Citrix Portal (Citrix)
- Web (HTTP)
- Secure Web (HTTPS)
- External Web Site
- Mobile Connect
- File Shares (CIFS)
- File Transfer Protocol (FTP) and SSH File Transfer Protocol (SFTP)
- Telnet HTML5 Settings
- Secure Shell Version 2 (SSHv2)
- Services > Policies
- Device Management Configuration
- Clients Configuration
- End Point Control
- Web Application Firewall Configuration
- Viewing and Updating Web Application Firewall Status
- Configuring Web Application Firewall Settings
- Enabling Web Application Firewall and Configuring General Settings
- Configuring Global Exclusions
- Configuring Intrusion Prevention Error Page Settings
- Configuring Cross-Site Request Forgery Protection Settings
- Configuring Cookie Tampering Protection Settings
- Configuring Web Site Cloaking
- Configuring Information Disclosure Protection
- Configuring Session Management Settings
- Configuring Web Application Firewall Signature Actions
- Configuring Custom Rules and Application Profiling
- Using Web Application Firewall Monitoring
- Licensing Web Application Firewall
- Capture ATP
- Geo IP and Botnet Filter
- High Availability Configuration
- Services Configuration
- Configuring Users & Logs
- Users Configuration
- Users > Status
- Users > Local Users
- Local Users
- Editing User Settings
- Adding User Policies
- Adding a Policy for an IP Address
- Adding a Policy for an IP Network
- Adding a Policy for All Addresses
- Setting File Share Access Policies
- Adding a Policy for a File Share
- Adding a Policy for a URL Object
- Policy URL Object Field Elements
- Adding a Policy for All IPv6 Addresses
- Adding a Policy for an IPv6 Address
- Adding a Policy for an IPv6 Network
- Adding or Editing User Bookmarks
- Terminal Services (RDP) or Terminal Services (RDP - HTML5)
- Virtual Network Computing (VNC)
- Citrix Portal (Citrix)
- Web (HTTP)
- Secure Web (HTTPS)
- External Web Site
- Mobile Connect
- File Shares (CIFS)
- File Transfer Protocol (FTP)
- SSH File Transfer Protocol (SFTP)
- Telnet
- Secure Shell Version 2 (SSHv2)
- HTML5 SSH Key File Authentication Support
- Creating a Citrix Bookmark for a Local User
- Creating Bookmarks with Custom SSO Credentials
- Configuring Login Policies
- Denying Mobile App Binding when Login is Attempted from any External Network
- Reusing Mobile App Binding Text Code
- Flexibility in Choosing Two-factor Authentication Method for NetExtender Login
- Configuring End Point Control for Users
- Configuring Capture ATP
- Users > Local Groups
- Deleting a Group
- Adding a New Group
- Editing Group Settings
- Editing General Local Group Settings
- Enabling Routes for Groups
- Adding Group Policies
- Editing a Policy for a File Share
- Configuring Group Bookmarks
- Terminal Services (RDP), Terminal Services (RDP-HTML5) or Terminal Services (RDP-Native)
- Virtual Network Computing (VNC)
- Citrix Portal (Citrix)
- Web (HTTP)
- Secure Web (HTTPS)
- External Web Site
- Mobile Connect
- File Shares (CIFS)
- File Transfer Protocol (FTP) and SSH File Transfer Protocol (SFTP)
- Secure Shell Version 2 (SSHv2) HTML5 Settings
- SSHv2 Common Settings
- Configuring Group End Point Control
- LDAP Attribute Information
- Group Configuration for Active Directory and RADIUS Domains
- Creating a Citrix Bookmark for a Local Group
- Global Configuration
- Log Configuration
- Users Configuration
- Using Virtual Office
- Appendices
- Using Online Help
- Configuring an SMA Appliance with a Third-party Gateway
- Printer Redirection
- Use Cases
- Secure Mobile Access Security Best Practices
- Multi-Factor Authentication
- Additional Configuration Recommendations for Security Best Practices
- Prohibit Saving Username and Password
- Hide Domain List on Portal Login Page
- Enable HTTP Strict Transport Security (HSTS) for SMA
- Enforce Login Uniqueness
- Enforce Client Source Uniqueness
- Enable “Login Schedule”
- Enable “Logout Schedule”
- Enforce Password Complexity
- Enable Client Certificate Enforcement (Advanced Security Feature)
- Restrict Request Headers
- Use a Public Certificate
- Allow Touch ID and Face ID on Mac, Apple IOS, and Android Devices
- Disconnection on Inactivity Timeout
- Disable the Default Admin Account
- Allow Policy Match Logging
- Setup Connection Policies
- Device Registration
- End Point Control
- GEO IP Fencing
- Capture ATP for the SMA 100 Series
- Security Enhancements
- General Considerations
- NetExtender Troubleshooting
- Frequently Asked Questions
- Using the Command Line Interface
- Using SMS Email Formats
- Support Information
- Glossary
- SonicWall Support
Adding or Editing User Bookmarks
The Bookmarks page provides configuration options to add and edit user bookmarks. In addition to the main procedure that follows, see the following steps.
To define user bookmarks
- In the Edit User Settings window, click the Bookmarks page.
-
Click Add Bookmark. The Add Bookmark window displays.
When user bookmarks are defined, the user sees the defined bookmarks from the Secure Mobile Access Virtual Office home page.
- Type a descriptive name for the bookmark in the Bookmark Name field.
-
Enter the fully qualified domain name (FQDN) or the IPv4 or IPv6 address of a host machine on the LAN in the Name or IP Address field. In some environments you can enter the host name only, such as when creating a VNC bookmark in a Windows local network.
If a Port number is included with an IPv6 address in the Name or IP Address field, the IPv6 address must be enclosed in square brackets, for example: [2008::1:2:3:4]:6818.
Some services can run on non-standard ports, and some expect a path when connecting. Depending on the choice in the Service field, format the Name or IP Address field.
Bookmark Name or IP Address Formats by Service Type Service Type Format Example for Name or IP Address Field RDP - HTML5
RDP - NativeIP Address
IPv6 Address
IP:Port (non-standard)
FQDN
Host name10.20.30.4
2008::1:2:3:4
10.20.30.4:6818
JBJONES-PC.sv.us.sonicwall.com
JBJONES-PCVNC
VNC - HTML5IP Address
IPv6 Address
IP:Port (mapped to session)
FQDN
Host name
NOTE: Do not use session or display number instead of port.10.20.30.4
2008::1:2:3:4
10.20.30.4:5901 (mapped to session 1)
JBJONES-PC.sv.us.sonicwall.com
JBJONES-PC
NOTE: Do not use 10.20.30.4:1
TIP: For a bookmark to a Linux server, see the Tip below this table.Citrix (Citrix Web Interface)
Citrix - HTML5
Citrix - Native
Citrix - ActiveXIP Address
IPv6 Address
IP:Port IP:Path or File
IP:Port:Path or File FQDN URL:Path or File
URL:Port
URL:Port:Path or File
Note: Port refers to the HTTP(S) port of Citrix Web Interface, not to the Citrix client port.172.55.44.3
2008::1:2:3:4
172.55.44.3:8080 or [2008::1:2:3:4]:8080
172.55.44.3 /folder/file.html
172.55.44.3:8080/report.pdf
www.citrixhost.company.net
www.citrixhost.net/folder/
www.citrixhost.company.com:8080
www.citrixhost.com:8080/folder/index.htmlHTTP
HTTPSURL
IP Address of URL
IPv6 Address
URL:Path or File
IP:Path or File
URL:Port
IP:Port
URL:Port:Path or File
IP:Port:Path or Filewww.sonicwall.com 204.212.170.11 2008::1:2:3:4 www.sonicwall.com/index.html 204.212.170.11/folder/ www.sonicwall.com:8080 204.212.170.11:8080 or [2008::1:2:3:4]:8080 www.sonicwall.com:8080/folder/index.html 204.212.170.11:8080/index.html File Shares
(CIFS)Host\Folder\
Host\File
FQDN\Folder
FQDN\File
IP\Folder\
IP\Fileserver-3\sharedfolder\
server-3\inventory.xls
server-3.company.net\sharedfolder\
server-3company.net\inventory.xls
10.20.30.4\sharedfolder\
10.20.30.4\status.doc
NOTE: Use backslashes even on Linux or Mac computers; these use the Windows API for file sharing.FTP IP Address
IPv6 Address
IP:Port (non-standard)
FQDN
Host name10.20.30.4
2008::1:2:3:4
10.20.30.4:6818 or [2008::1:2:3:4]:6818
JBJONES-PC.sv.us.sonicwall.com
JBJONES-PCTelnet
Telnet - HTML5IP Address
IPv6 Address
IP:Port (non-standard)
FQDN
Host name10.20.30.4
2008::1:2:3:4
10.20.30.4:6818 or [2008::1:2:3:4]:6818
JBJONES-PC.sv.us.sonicwall.com
JBJONES-PCSSHv2 IP Address
IPv6 Address
IP:Port (non-standard)
FQDN
Host name10.20.30.4
2008::1:2:3:4
10.20.30.4:6818 or [2008::1:2:3:4]:6818
JBJONES-PC.sv.us.sonicwall.com
JBJONES-PC -
Optionally, you can enter a friendly description to be displayed in the bookmark table by filling in the Description field.
-
Optionally, you can enter a comma-separated list of categories where this bookmark appears in the Categories field. For example: Favorites, Tab1, Tab 2. Note that standard tabs, such as Desktop, Web, Terminal, or Mobile, do not need to be specified.
-
Set whether users are can edit or delete bookmarks from the Virtual Office portal by selecting for Allow user to edit/delete. You can select to Allow, Deny, or to Use the user policy setting.
-
Select one of the service types from the Service drop-down menu.
For the specific service you select from the Service drop-down menu, additional fields might appear. Use the following information for the chosen service to complete the building of the bookmark:
Was This Article Helpful?
Help us to improve our support portal