---

Question: How do I reset my SecurityGateway password if I forget it?
On the login page for the SecurityGateway server, you should see a button labeled 'Forgot Password', just to the right of the 'Sign In' button. Click on it, and the password for your account will be emailed to your email address. If you cannot access the email address in question, please contact your system administrator to manually change the password on your SecurityGateway account.

---

Question: Are SecurityGateway and ProtectionPlus compatible with Windows Vista?
Yes, both are fully compatible and supported on the Windows Vista platform.

---

Question: Can I relay mail messages through SecurityGateway?
SecurityGateway will not relay messages that are neither to nor from one of its domains. Spammers often exploit open relay servers to hide their tracks, and therefore relaying mail indiscriminately could result in your domain being blacklisted by one or more DNSBL services.
There is an option available to relay messages if they are neither to nor from one of your domains but are being sent by one of your domain mail servers. This option is disabled by default.

---

Question: Does SecurityGateway run under Internet Information Server (IIS), Apache, or other third-party webservers?
Not at this time. We have this on our wishlist for a future version of SecurityGateway. There is currently no time frame for when it will be supported.

---

Question: How does the licensing work with SecurityGateway?
Purchasing a license for SecurityGateway comes with one year, or two years, of Upgrade Protection, which allows you to download and install the most current major release of the software when we offer it, free of charge. However, SecurityGateway will continue to operate if the Upgrade Protection expires, but you will not be able to upgrade to the latest major release until the Upgrade Protection is renewed.
Also note that incremental version upgrades, indicated by the third number in the version (1.0.x), are always free of charge, regardless of Upgrade Protection.
Licenses also have a user-count associated with them, which indicates the maximum amount of users that can use the SecurityGateway server. A 'user' is defined as someone who will have email messages directed to their address sent through the server, and may have an account.
For pricing by license-sizes and more information regarding licencing, please visit http://www.altn.ca/securitygateway/

---

Question: How large can SecurityGateway message database get before performance becomes an issue?
As the database approaches 5 million message records, performance may become an issue. If this is where your database is, consider tweaking your settings under Setup | Data Retention from the SecurityGateway dashboard.

---

Question: What is the difference between global administrators and domain administrators in SecurityGateway?
SecurityGateway has support for two types of administrators: global administrators and domain administrators. Global administrators have access to the settings and database records for every domain configured on the server, whereas domain administrators can only access information regarding the domain or domains that they are specifically allowed to administer.
Global administrators also have access to certain server-wide settings, such as data-retention rules, and security features such as dynamic screening, tarpitting, and IP shielding.
Note that domain administrators can have control of more than one domain.

---

Question: What types of account-verification can SecurityGateway use?
SecurityGateway can use four different kinds of account verification:

• SMTP 'call-forward' verification
  This method is compatible with all servers, since it uses standard SMTP commands to contact the email server associated with the domain, using the RCPT TO command.
  Note that your server needs to allow null senders, or '<>', for this process to work, as required by the RFC. By default, this type of verification uses SMTP port 25.
  
• Exchange / ActiveDirectory
  If you are using an Exchange server, or have an ActiveDirectory domain setup, you may use it to verify users exist on the domain.
  Note, however, that SecurityGateway does not have support for custom search-filter, like in MDaemon. By default, this type of verification uses port 389.
  
• Minger
  If you are using MDaemon 9.63 or later, you can use the Minger protocol to verify users are valid. More information regarding how to setup Minger can be found at the related article below.

By default, this type of verification uses port 4069.

LDAP Server
If you have LDaemon, or a third-party LDAP server setup, you can use LDAP to verify users are valid. Once this option is chosen, you may specify the DN information and the search-filter to search under.
By default, this type of verification uses port 389.

---

Question: How do I get the most performance out of SecurityGateway?
There is a number of ways to make sure SecurityGateway is performing at its best:
While SecurityGateway requires at least 512 megs of RAM, we recommend 2 gigs or more, especially if the server is going to see a lot of traffic. Also, a dual- or quad-core processor is recommended. Consider setting SecurityGateway to save message-logs and backups to a different drive than the one which SecurityGateway is installed on. You may change the directories SecurityGateway uses for different features under Setup / Users in the bottom-left corner, then Directories on the left.
Likewise, setting up SecurityGateway on a separate drive from the operating system will help improve performance. Use caution when increasing the amount of information that SecurityGateway records in its logs, and how long it retains information, as that can both increase the amount of disk-space used, and the amount of CPU processing power needed to filter messages.

---

Question: Are mailing list addresses that are hosted on my domain mail server treated as users by SecurityGateway, and therefore count toward the number of users allowed by my software license?
Yes, mailing lists are a valid recipient, and therefore are counted as a SecurityGateway user.

---

Question: How do I access the SecurityGateway server securely through SSL?
SecurityGateway can be accessed via secure-HTTP (HTTPS) via port 4443 if an SSL certificate has been defined under Setup / Users, System, Encryption.
If you wish to change the default ports SecurityGateway uses for HTTP and HTTPS, click on Setup / Users in the lower-left corner, then HTTP Interface on the left.

---

Question: How do I reset my SecurityGateway password if I forget it?
On the login page for the SecurityGateway server, you should see a button labeled 'Forgot Password', just to the right of the 'Sign In' button. Click on it, and the password for your account will be emailed to your email address.
If you cannot access the email address in question, please contact your system administrator to manually change the password on your SecurityGateway account.

---

Question: How can I reject a message with a particular subject using Sieve script?
If you would like to reject messages that match a particular subject header, you can do so with a Sieve script. It will reject the message with a 550 error and reason text you will supply.

1. Log into the SecurityGateway administration website with a global administrator account
2. Click on Security
3. Locate the Advanced section
4. Click on Sieve Scripts
5. Click New
6. Enter a descriptive Script Name
7. Select Data from the 'Mail Event:' dropdown
8. Select the scope you wish to use If using a scope of Domain, select the domain you wish to apply the script to in the 'Domain:' dropdown
9. Enter this script in the 'Script Text:' box:
   require 'reject';
   if header :is 'subject' 'Subject to look for'
   {
   reject 'I don't want your spam';
   }
   Edit 'Subject to look for' to reflect the subject you wish the script to look for. Retain the double quotes around the information. If you wish to edit the reject message returned with the 550 error you may do so, but keep it enclosed in double quotes.
   
10. Click Save and Close

---

Question: How do I move SecurityGateway to another machine?
You will make a backup of the database, download and copy the backup file to the new machine, install SecurityGateway, and import the database. To do so, please follow these steps:

1. Log into the SecurityGateway site with a global administrator account
2. Click Setup / Users on the left pane
3. Look for the Database Maintenance section
4. Click Backup along the left
5. Click the link 'Click here to backup entire database now'
   The backup window will open and show the backup progress. You can close the window and continue later when the backup is complete, or leave the window open to monitor the progress.
6. Click on Restore in the left pane, under Database Maintenance
7. Select the backup under the Restore section on the right pane
8. Click on the Download download link to download it to your local machine.
9. Shut down the SecurityGateway service, either using the Services control-panel, or the 'Stop SecurityGateway' icon in the Start Menu
10. Install SecurityGateway on the new server, in the desired location
11. Copy the database file to the new server
12. Once SecurityGateway is installed, log into the new SecurityGateway site with a global administrator account
13. Click Setup / Users
14. Click Restore under Database Maintenance
15. Under 'Upload Backup Filer' click Browse
16. Select the backup file
17. Click OK
18. Click the Upload Backup File button
19. Select the backup file in the 'Restore' section
20. Click the 'restore' link
21. Click OK on the warning message that data created or modified since the backup file was created will be lost. The Restore window will show the progress Once the restore is completed, you will be logged out of the Security Gateway site.

The restore is complete. You can now log into the SecurityGateway site with your global administrator account from the original machine.