Kerio Control

How can we improve Kerio Control?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Kerio Control should look at adopting other means of active directory, like cloud LDAPS/SAML. This will enable Kerio users to make use of C

    Kerio Control should look at adopting other means of active directory, like cloud LDAPS/SAML. This will enable Kerio users to make use of C

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. MFA

    Could we get an option in the Administration Portal to "Disable" Remember me for MFA. We have a client that wishes to use MFA every time they login via VPN. Default is to "Remember me" when using MFA.

    Also could we get an option to setup Allow Rules / Bypass rules for MFA. Eg If they login via this IP Address, No MFA etc. When we are remote managing MFA Enabled Firewalls we have to have the phone that has the MFA code on it.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Force login before user can access HTTP

    We find that users can access HTTP before logging into their user accounts. This means they can happily watch youtube all day without it contributing towards their quota. Can you make a way to force login?

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. must login to kerio control

    when i make traffic rule to make any authentication user login to internet if any one try to open any site not open
    few sites only go to authentication login and redirect to the site again
    but if i open google , yahoo,msn, not open

    shortly i want any one try to open any site or serves on internet login firstly on kerio control
    whether any authentication user or not

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. Support for SAML for exchanging authentication and authorization

    Adding SAML support to Kerio Control will allow it to exchange authentication and authorization information with other systems.

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Share the login user information with other Kerio Control

    Hi,

    If Kerio control can share login user information with other kerio appliance we can define more next generation rules.

    For examle:

    we have two Kerio Control

    one is setup on main site and an other setup on remote site.

    we define AD connection on main site and remote site and we define p2p vpn between sites.

    when the user login at remote site with radius. I can see the information about which user login with which ip address. This is okey .

    but when i want to define a rule on main site about; this ad group can access…

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. determining the amount of traffic for groups

    This program has the problem of determining the amount of traffic for groups .

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. kerio control and active directory

    kerio control can not connect to Active Directory groups . This option can also be added . this firewall can apply users inter active directory but can not applied limit bandwidth in groups !!

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Password complexity

    Right now (when using local user database) any user can change their password to a very weak one, even to one sign only - which has impact on remote Kerio VPN access. A minimum password complexity enforcement (in eg. like in Kerio Connect) feature would effectively increase the security.

    33 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. allow temporary auth from active hosts

    Add an option to allow time limited access from the host list in active host.

    Give the ability to right click on a host that is not logged in and allow 15 minutes of internet access for example.

    Usage example...
    We use Unifi access points that do not log into the internet directly. When it comes to firmware updates for the access points they fail to update as all they get is the kerio login page and can;t be logged into kerio. The work around is to automaticly auth them using mac addresses but this take a long time and…

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. Disable guest interface welcome/login page

    The guest interface/welcome page is an obstacle with guests that make use of company proxies, and with devices that don't have browsers to authenticate first. Even when no password is required, they still need to access this page first before they'll get Internet access. Please, pretty please ... with sprinkles on top, can we have a way to disable that or give users Internet access instantly?

    21 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. limit-user-concurrent-session

    So user can logon to internet with web Authentication for one session ONLY and Can not logon from another PC Until he logout from first session .

    7 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. Login Restriction Kerio Control

    Limit the use of an user account to an ip address, so the user can login only from a designated computer.

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  14. authentication

    In a routed LAN environment, with multiple VLANs, the Kerio RADIUS server can authenticate wireless clients onto the LAN. However, unless the clients are on the same VLAN/Subnet as the Kerio Firewall, they won't be auto-authenticated onto the Kerio itself. Please allow this auto-authentication to work on all networks that connect to the Firewall via the Trusted / Local Interfaces.

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. NTLM authentication

    Add the ability to automatically exit authorized users through NTLM, if the users log off in the OS windows.

    1 vote
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. Guest network automatic password change (daily/weekly/monthly)

    Would be nice if Kerio could automatically change the guest network password periodically and email the password to specific users such a the company receptionist.

    Thanks.

    4 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  17. SMS authentication for guest network

    Single password is not reliable for all types of guests. Also there is a law regulation in some countries not to provide anonymous access to the Internet, and a acceptable authentication method via SMS, so in control we will have device cell number+mac address pair that will identify person quite well

    34 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. Windows AD binding string when Kerio works with AD user accounts

    When the Kerio Control works with Windows AD user accounts, it will be very useful to have the ability to bind the Kerio to the specified Organization Unit (OU) instead of the root of AD. As I know this feature is available in the Kerio Connect.

    13 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. Kerberos-Authentication for autom. Login (SSO) from Terminalserver-Users at the non-transparent Proxy

    Kerberos-Authentication for autom. Login (SSO) from Terminalserver-Users at the non-transparent Proxy

    3 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  20. Add HTTPS in function Always require users to be authenticated when accessing web pages

    Is it possible to add HTTPS?
    It only works for HTTP now. But HTTP is dying. If user enters HTTPS://www.google.com automatic logon (NTLM) not work and browser display page not found...

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Kerio Control

Feedback and Knowledge Base