Configuring SMTP to support s in isecurity Action and Audit

May, 2006 Configuring SMTP to support e-mails in iSecurity Action and Audit Procedure for iSecurity Action 1) On the OS/400 command line, enter the f...
Author: Claude Weaver
2 downloads 1 Views 213KB Size
May, 2006

Configuring SMTP to support e-mails in iSecurity Action and Audit Procedure for iSecurity Action 1) On the OS/400 command line, enter the following command: DSPNETA Record the system name defined in the Current System Name parameter. For illustration purposes, assume that the system name is SystemA. 2) From the OS/400 command line enter the following command: CFGTCP 3) Select option 12 and fill in the following parameters: Host name Domain name Host name search priority Domain name server Internet Address:

SystemA company.com *LOCAL

- value from DSPNETA above - for instance, ‘acme.com’

‘www.xxx.yyy.zzz’

You can obtain these IP

Define addresses by right-clicking Network Neighborhood on your Windows desktop, going to Properties, then marking the TCP/IP component from the Network Components list and viewing its properties. Go to the DNS configuration and copy the IP addresses. NOTE: Be sure to ask your ISP or System Administrator in which order you should enter these IP addresses and which ones are still in use. 4) Go to the CFGTCP menu. Choose option Work with TCP/IP host table entries. Add the IP address of your machine, and associate it with the host name SystemA (your system name as recorded in DSPNETA above). 5) Add the IP address and host name of your Mail Service Provider’s SMTP server (for instance: mail.acme.com). You can obtain this information from the Accounts… option under Tools in Outlook on your PC, or ask your System Administrator. 6) Issue the WRKDIRE command. I. Press F17 (Shift F5). II. The Position to parameter appears. III. Type in INTERNET. IV. Press the Enter key.

If an entry doesn’t exist for INTERNET SMTPRTE with parameters USRID(INTERNET SMTPRTE), USRD('UserID to send to Internet'), SYSNAME(INTERNET)USER, and PREFADR(NETUSRID *IBM ATCONTXT), issue the following commands with the parameters shown: ADDDIRE USRID(INTERNET SMTPRTE) USRD('UserID to send to Internet') USER(*NONE) SYSNAME(INTERNET) PREFADR(NETUSRID *IBM ATCONTXT)

ADDDIRE USRID(QSMTPDMY QSMTPSYS) USRD('QSMTP user') SYSNAME(TCPIP) MSFSRVLVL(*USRIDX)

In any event, on an OS/400 command line, enter the following command: CHGDSTA

Press F4 to prompt. Fill in the User ID and Address parameters under Route to SMTP gateway. User ID: INTERNET Address: SMTPRTE 7) On the OS/400 command line, enter the following command: WRKDIRE. Check if an entry with a User ID named ACTION2P or ACTION3P exists. If both exist, do the same for both. Press ‘2’ and then enter. Page down until you see the field Mail service level and enter ‘2’ (System message store). At Preferred address enter 3 (SMTP name). 8) Press F19. This takes you to the Change name for SMTP screen where the sender’s e-mail address can be configured. You may need to press enter once more to create an SMTP name entry for the user. You may use CHGDIRE instead. 9) At this point you will determine how you would like the sender’s e-mail to appear to the receiver. For instance, if you want the e-mails to be sent from [email protected], you should write ‘user1’ in the SMTP User ID field and ‘acme.com’ in the SMTP domain field. Press Enter until all date is updated. From the command line, issue the commands:

INZDSTQ QSMTPQ ENDTCPSVR *SMTP ENDMSF *IMMED CRTDTAARA DTAARA(QUSRSYS/QTMSCLEAN) TYPE(*CHAR) LEN(1) VALUE('c') AUT(*ALL) HLDDSTQ QSMTPQ *NORMAL HLDDSTQ QSMTPQ *HIGH STRTCPSVR *SMTP STRMSF *CLEAR

10) Issue the WRKACTJOB SBS(QSYSWRK) command. Ensure that the MSF jobs are active.

The MSF job logs should not contain diagnostic or escape messages. .

Ensure that the SMTP servers are active in subsystem QSYSWRK. Issue the following command:

Ensure that no diagnostic or escape messages exist in the following: QTSMTPBRCL QTSMTPBRSR QTSMTPCLTD QTSMTPSRVD

Once again, issue the command: INZDSTQ (QSMTPQ) Issue the commands: GRTUSRPMN TOUSER(USER1) FORUSER(SECURITY2P) GRTUSRPMN TOUSER(USER1) FORUSER(SECURITY3P) GRTUSRPMN TOUSER(SECURITY3P) FORUSER(SECURITY2P) USER1 is the User Profile that was logged on in the session and under which all the above

configurations where made. Either of these commands will work depending on your system. Note that it is not significant if one or more of these commands fail.

Procedure for iSecurity Audit

1) Go to option 81 from the main menu. 2) Choose option 13. 3) The User ID field should have the value ACTION2P or ACTION3P, depending on which directory entry exists (WRKDIRE). If both exist, use ACTION3P. If at some point in the future you install other Raz-Lee iSecurity products, remember to change it to ACTION2P. 4) The system name should be SystemA (see DSPNETA above). 5) The 'User profile enables for Email' should be SECURITY2P or SECURITY3P, depending on whether the 'User ID' is ACTION2P or ACTION3P respectively. 6) Log off and log on again, or wait for about 10 minutes, so these parameters get updated with their new values.

Questions or problems should be referred to: Rami Aviram Technical Support Manager Raz-Lee Security Inc. Tel.: 1-888-7295338 Fax: +972-9-9588861 E-mail: [email protected] Website: www.razlee.com

Suggest Documents