Tipp Technical Solutions » » admin http://www.tipptech.net/wp Sat, 24 Sep 2016 13:56:15 +0000 en-US hourly 1 http://wordpress.org/?v=4.1.1 Kerio launches new Contol Box NG100 for small businesses http://www.tipptech.net/wp/?p=246 http://www.tipptech.net/wp/?p=246#comments Tue, 03 Nov 2015 17:21:04 +0000 http://www.tipptech.net/wp/?p=246

We’re excited to announce the launch of the new Kerio Control Box NG100 – an all-in-one network security hardware appliance for small businesses! Read more at http://bit.ly/1H2R85h

Kerio's photo.
]]>
http://www.tipptech.net/wp/?feed=rss2&p=246 0
Kerio Control 8.5 out now http://www.tipptech.net/wp/?p=238 http://www.tipptech.net/wp/?p=238#comments Wed, 18 Feb 2015 14:29:38 +0000 http://www.tipptech.net/wp/?p=238 What’s New in Kerio Control 8.5
Edit Text

Kerio Control 8.5 boosts security for remote access with the addition of 2-step verification, while adding numerous usability improvements for users and administrators alike.

  • 2-Step Verification - improve security for remote access by requiring users to enter a one-time passcode in addition to their standard credentials.
  • Service Discovery forwarding - easily connect to printers and other discoverable devices over VPN and across different networks behind the same firewall.
  • VPN Client Improvements - easier management of multiple VPN connections and new Mac OS installer enables “push” installation via 3rd party tools.
  • Improved/New Alerts - keep informed of important firewall events with an expanded set of alert triggers with a new default set of alerts for new installs.

 

To download this latest version visit the support section of our website and to learn more about what’s new in this release check out the release notes.

Here is a quickstart guide

http://kb.kerio.com/product/kerio-control/quick-start-with-kerio-control-1558.html

]]>
http://www.tipptech.net/wp/?feed=rss2&p=238 0
Kerio Software affected by ShellShock, if running on Linux please update your OS http://www.tipptech.net/wp/?p=235 http://www.tipptech.net/wp/?p=235#comments Fri, 26 Sep 2014 13:06:50 +0000 http://www.tipptech.net/wp/?p=235
Summary
Edit Text

The shellshock vulnerability (aka CVE-2014-6271 and CVE-2014-7169) is a security bug affecting Unix-like operating systems through the bash shell. Many Linux distributions, and Mac OS X include the affected GNU Bash version. An attacker can exploit the vulnerability via remote shell access, or through any application that may execute bash scripts. The vulnerability could allow a remote attacker to execute arbitrary code.

Impact on Kerio Products
Edit Text

Kerio Control does not include the Bourne-Again shell (Bash) and is not affected by this vulnerability. All Linux systems in the Samepage infrastructure are up to date and are not vulnerable. Kerio Operator (all editions) and Kerio Connect Virtual Appliance include the affected Bash version within the underlying operating system. However, they do not pass user-supplied data into the Bash environment and therefore cannot be misused by an attacker.

Next Steps
Edit Text

Samepage

No action necessary. All Linux systems in the Samepage infrastructure are up to date.

Kerio Control (All Editions / Versions)

No action necessary. The affected Bourne-Again shell (Bash) is not implemented in Kerio Control.

Kerio Operator (Virtual Appliance, Software Appliance, and Box Editions)

Operator (up to version 2.3.2) has the affected Bash shell and the vulnerability is exploitable via DHCP if the attacker has access to the local network. We will release a patch version early next week (ie. week starting 2014-09-29).

Kerio Connect (Virtual Appliance, Linux, and Mac OS X)

We recommend installing the appropriate operating system updates to fix this vulnerability on the operating system level. This is highly encouraged if there are other services on the same server (beside Kerio Connect). This is valid for all Linux and Mac OS X distributions. Use the default updating mechanism in your operating system to get the latest updates. Make sure you are running the latest distribution version, which receives a security update for this vulnerability. For Debian (read more) and Ubuntu  (read more) use “sudo apt-get update” and “sudo apt-get upgrade” commands, for CentOS  use “sudo yum update” (read more). Users with Kerio Connect Virtual Appliance may need to modify server configuration to get latest updates (see below). On OS X use default “Software Update” application.

]]>
http://www.tipptech.net/wp/?feed=rss2&p=235 0
Configuring IPsec VPN Iphone and Android http://www.tipptech.net/wp/?p=231 http://www.tipptech.net/wp/?p=231#comments Thu, 17 Jul 2014 13:08:31 +0000 http://www.tipptech.net/wp/?p=231 IPsec overview

Kerio Control supports IPsec. IPsec (IP security) is a security extension for Internet Protocol (read more in Wikipedia).

Kerio Control uses IPsec for VPN implementation. IPsec can be used for:

  • IPsec VPN server for connecting clients (desktops, notebooks, mobile devices etc…)

  • IPsec VPN tunnel for connecting LANs

This article describes using IPsec VPN server and configuring clients.

For securing the communication you can use:

  • a preshared key (PSK, shared secret)

  • a SSL certificate

  • both methods in Kerio Control (client application must use only one method).

Each user must provide their credentials for authentication.

Configuring IPsec VPN server with a preshared key

The preshared key is a shared password for all users using an IPsec VPN.

VPN Server Properties

VPN Server Properties

  1. In the administration interface, go to Interfaces.

  2. Double-click on VPN Server.

  3. In the VPN Server Properties dialog (see screenshot VPN Server Properties), check Enable IPsec VPN Server.

    Kerio Control is able to provide the Kerio VPN server and IPsec VPN server simultaneously.

  4. On tab IPsec VPN, select a valid SSL certificate in the Certificate pop-up list.

  5. Check Use preshared key and type the key.

  6. Check Enable MS-CHAP v2 authentication, if the users’ passwords are stored in a format which supports MS-CHAP v2.

    User passwords are stored in a format supports MS-CHAP v2, if they are:

    • mapped from Microsoft Active Directory

    • local, but authenticate in Microsoft Active Directory

    • local + Store password in MS-CHAP v2 compatible format is checked in the user dialog (see screenshot Add/Edit user dialog in section Users)

      Add/Edit user dialog in section Users

      Add/Edit user dialog in section Users

  7. Save the settings.

Configuring IPsec server with a SSL certificate

  1. In the administration interface, go to Interfaces.

  2. Double-click on VPN Server.

  3. In the VPN Server Properties dialog, check Enable IPsec VPN Server.

  4. On tab IPsec VPN, select a valid SSL certificate in the Certificate pop-up list.

  5. On tab IPsec VPN, check Use certificate for clients.

  6. Check Enable MS-CHAP v2 authentication, if the users’ passwords are stored in a format which supports MS-CHAP v2.

    Users passwords are stored in a format supports MS-CHAP v2, if they are:

    • mapped from Microsoft Active Directory

    • local, but authenticate in Microsoft Active Directory

    • local + Store password in MS-CHAP v2 compatible format is checked in the user dialog (see screenshot Add/Edit user dialog in section Users)

  7. Save the settings.

Configuring clients with a preshared key

Tell your users what to prepare for the configuration of their clients:

  • VPN type: L2TP IPsec PSK

  • Kerio Control hostname or IP address

  • preshared key (PSK, shared secret)

  • username and password for access to firewall

Supported mobile devices

Many mobile devices support IPsec VPN and may work with Kerio Control. However, Kerio Control officially supports the following list:

  • Android 4 and higher

  • iOS 6 and higher

Examples of Apple iPhone and Android settings

Examples of Apple iPhone and Android settings

]]>
http://www.tipptech.net/wp/?feed=rss2&p=231 0
Announcing the Kerio Cloud Solution Program http://www.tipptech.net/wp/?p=225 http://www.tipptech.net/wp/?p=225#comments Tue, 10 Jun 2014 14:03:47 +0000 http://www.tipptech.net/wp/?p=225 Today I’m excited to announce the launch of the Kerio Cloud Solution Program. We’re making Kerio Connect Cloud, the cloud-hosted version of our award winning Kerio Connect email server software, available globally to our resellers.

Kerio has partnered with five companies that have deep expertise in offering scaled and reliable cloud infrastructure to power our Kerio Connect Cloud service. We are excited to be working together with our existing partners BIT, GetSync’d, OnePointSync, PostmanMojo, and uSync as our charter Kerio Cloud Solution Distributors (KCSD).

About the Author

Scott Schreiman is the CEO and president of Kerio Technologies, Inc.,

http://www.kerio.com/blog/announcing-kerio-cloud-solution-program

Please Contact TippTech Sales today to move your email to the Kerio Cloud – (937) 886-4355

]]> http://www.tipptech.net/wp/?feed=rss2&p=225 0 What’s New in Kerio Connect 8.3 http://www.tipptech.net/wp/?p=220 http://www.tipptech.net/wp/?p=220#comments Tue, 20 May 2014 14:44:12 +0000 http://www.tipptech.net/wp/?p=220 What’s New in Kerio Connect

Today’s launch of Kerio Connect 8.3 adds significant security and ease-of-use improvements to the Kerio Connect client.

  • S/MIME support – email sensitive information with digitally signed and encrypted messages in Kerio Connect Client. Perfect for business owners who want to protect data, and enabling users to send-and-receive encrypted emails using their choice of mail client.
  • Click to Call – save time searching and dialing phone numbers by simply clicking any phone number in your Kerio Connect client Contacts list, increasing user productivity and efficiency.
  • Easier management of user Contact information – IT administrators can now enjoy managing user details from the new Contact tab in the Kerio Connect web administration, with user information stored and synced to the local user database, not just in directory service.

To download this latest version visit the support section of our new website and to read more about these improvements check out our blog.

 

]]>
http://www.tipptech.net/wp/?feed=rss2&p=220 0
From Kerio more information about the Heartbleed bug http://www.tipptech.net/wp/?p=216 http://www.tipptech.net/wp/?p=216#comments Thu, 10 Apr 2014 12:50:48 +0000 http://www.tipptech.net/wp/?p=216

OpenSSL vulnerability CVE-2014-0160 (Heartbleed)

SummaryThe National Institute of Standards and Technology (NIST) has published a vulnerability to OpenSSL 1.0.1. Details regarding the vulnerability are available from the NIST website. The following Kerio products used the affected version of the OpenSSL library…

  • Kerio Connect 8.2.0 and higher
  • Kerio Control 8.2.0 and higher
  • Kerio Operator 2.2.0 and higher

Resolution

A fix is available for Kerio Connect as of version 8.2.4. You can download this release from the Kerio Website.

A fix is available for Kerio Operator as of version 2.2.5. You can download this release from the Kerio Website.

A fix for Kerio Control is expected to be released on April 10, 2014.

Additional information and security precautions can be found at the following location: http://goo.gl/filNif ]]> http://www.tipptech.net/wp/?feed=rss2&p=216 0 The Heartbleed bug http://www.tipptech.net/wp/?p=214 http://www.tipptech.net/wp/?p=214#comments Wed, 09 Apr 2014 18:02:42 +0000 http://www.tipptech.net/wp/?p=214  

Please Note, Tipp Technical Solutions is currently updating all affected servers.

Dear Kerio Connect Customer,

The Heartbleed bug, which was discovered Monday, exposed a serious global vulnerability in OpenSSL 1.01. The vulnerability allows an attacker to read arbitrary data from the process memory. Customers using Kerio Connect version 8.2.0 and higher are affected.

This vulnerability is fixed in Kerio Connect 8.2.4, which was released today. We advise all affected customers to visit our knowledge base to find details of product updates including guidance for installation.

LEARN MORE

Kind Regards Kerio Technologies

]]>
http://www.tipptech.net/wp/?feed=rss2&p=214 0
Backup your Kerio Control config to the Cloud http://www.tipptech.net/wp/?p=204 http://www.tipptech.net/wp/?p=204#comments Mon, 17 Mar 2014 15:07:27 +0000 http://www.tipptech.net/wp/?p=204 from Kerio Knowledge base

Saving configuration to Samepage

Kerio Control can automatically backup and upload the configuration files to Samepage.io every day.

  1. Sign-up to Samepage for free (or use your existing Samepage account).
  2. In the administration interface, go to section Advanced Options → Configuration Backup.
  3. Check option Enable automatic daily backup.
  4. Enter you email address and your Samepage password.
  5. Go to Samepage, create a new page for the backup and copy URL of the page.
  6. In the Kerio Control administration interface, paste the address to the URL field.
  7. Save the settings.

Image

Kerio Control uploads configuration files once a day (section Backup provides a link to the page location).

Only the specified user will have access to this page.

For immediate configuration backups to Samepage, click on the Backup Now button.

Use link Import configuration or the Configuration Assistant to import the files back to Kerio Control.

 

]]>
http://www.tipptech.net/wp/?feed=rss2&p=204 0
When should you delegate and when should you share your account in Kerio Connect? http://www.tipptech.net/wp/?p=201 http://www.tipptech.net/wp/?p=201#comments Sat, 01 Mar 2014 16:30:57 +0000 http://www.tipptech.net/wp/?p=201 From the Kerio Blog

When should you delegate and when should you share your account in Kerio Connect?

Kerio Connect 8.2 will bring a new option to allow your personal assistant or colleague to access your Inbox and calendar. So, you may wonder: Should my assistant have the ability to send email on my behalf and setup meetings for me or should s/he just have read-only access to my Inbox and calendar?

Let’s review basic differences between delegation and sharing:

Account Delegation is when you want someone to manage your calendar, manage your email, send/accept invitations on your behalf, etc. It’s a classic “boss with a personal assistant” scenario. Your delegate will always have access to two specific folders: Calendar and Inbox. (You cannot delegate the Tasks folder, you can only share the Tasks folder, however there is one exception: you will see delegated Tasks in iCal on Mac OS X 10.5 or 10.6.)

If you want someone to have read-only access to your specific calendars or email folders, that’s what Folder Sharing is for. You pick and choose which folders you want to share with another user. The user will not be able to send meeting invites or respond to email on your behalf, but will get event reminders and be able to read all the messages.

If you used folder sharing in prior versions of Kerio Connect, make yourself familiar with the differences between account delegation and folder sharing and pick the one that fits your needs.

A note for Kerio Connect administrators

After you upgrade to Kerio Connect 8.2, the server will notify all users with CalDAV clients, asking them to decide which shared, public or delegated folders should be visible in their clients. If they choose to decline these sharing options, they will be able to re-add the calendars back to iCal simply by going to Kerio Connect Client and changing their preferences in “Folders to sync”.

We recommend you “hide” these shared calendars in Kerio Connect Client settings. The calendars will not be viewable in CalDAV clients but the user can make them visible later if needed, without asking the calendar owner again.

http://www.kerio.com/blog/when-should-you-delegate-and-when-should-you-share-your-account-kerio-connect

]]>
http://www.tipptech.net/wp/?feed=rss2&p=201 0