Kerio Control

How can we improve Kerio Control?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Automatic Login for Remote Desktop Services

    It would be of greast help if the users in a RDS-environment could be automatically logged on the Control. Like with Mac-Addresses or IPs.

    78 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  2. SMS authentication for guest network

    Single password is not reliable for all types of guests. Also there is a law regulation in some countries not to provide anonymous access to the Internet, and a acceptable authentication method via SMS, so in control we will have device cell number+mac address pair that will identify person quite well

    34 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  3. Password complexity

    Right now (when using local user database) any user can change their password to a very weak one, even to one sign only - which has impact on remote Kerio VPN access. A minimum password complexity enforcement (in eg. like in Kerio Connect) feature would effectively increase the security.

    33 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  4. 2-Step-Verification - every time a user login

    Actually a 2-Step-Verification is valid for 30 days. I would like to have the possibility to set this time to 0 days.

    33 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disable guest interface welcome/login page

    The guest interface/welcome page is an obstacle with guests that make use of company proxies, and with devices that don't have browsers to authenticate first. Even when no password is required, they still need to access this page first before they'll get Internet access. Please, pretty please ... with sprinkles on top, can we have a way to disable that or give users Internet access instantly?

    21 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  6. Ability to monitor individual Hosts based on IP address rather than file them all under "Not Logged in".

    The way Monitoring is currently set up, we need to have every host tied to an user in order to accurately see the traffic per connection.

    IP addresses which are not linked to a user will be marked as "Not logged in".

    It's not always possible or desirable to tie every source IP to an user.

    I would like to request a simple feature which would split up all the "Not Logged in"-traffic into their individual IP hosts.

    19 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  7. Windows AD binding string when Kerio works with AD user accounts

    When the Kerio Control works with Windows AD user accounts, it will be very useful to have the ability to bind the Kerio to the specified Organization Unit (OU) instead of the root of AD. As I know this feature is available in the Kerio Connect.

    13 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  8. Integrate a Radius authentication client to allow interfacing with 3rd party 2 factor Auth systems (or any OTHER Radius auth system)

    For many of us, 2 Factor Authentication is rapidly becoming the "bare minimum" for authentication standards.

    Please include a radius authentication client into Control to permit integration with 3rd party 2 factor authentication systems that implement a Radius server for authentication purposes using an OTP token generator (or application). Please ensure that this client is accessible to administrative, general (ie browsing and other permission based), and VPN authentication processes.

    Please note for many of us, a product that must authenticate but the lacks the ability to integrate into a pre-existing enterprise wide 2 factor authentication system (which seem to be…

    12 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allow Radius to work with Open Directory

    Please allow Radius to work with Apple's Open Directory.

    Control can already be bound to OD for user authentication. PLease allow for RADIUS authentication also.

    9 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  10. Connect User databases between Kerio products without external LDAP server

    Without using an external LDAP server, allow Kerio products to share user databases as Control and Connect typically have the same user set and passwords. Most of my small Apple based companies do not have an Active Directory server, nor do they want one.

    9 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  11. Configure certain URL and IP groups to bypass Quota.

    Add an option to define a list of url and ip groups that weight zero to the user quota accounting.

    9 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  12. 2-Step-Verification - SMS gateway

    Add in 2-factor authentication system the possibility to use SMS gateway for users without smartphone.
    The same system used by google and others

    9 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  13. Perform unique authentication setting for special interface or subnet.

    For each interface or subnet, perform unique authentication method. So that can provide different authentication setting for Lan user and wireless user.

    8 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  14. limit-user-concurrent-session

    So user can logon to internet with web Authentication for one session ONLY and Can not logon from another PC Until he logout from first session .

    7 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add HTTPS in function Always require users to be authenticated when accessing web pages

    Is it possible to add HTTPS?
    It only works for HTTP now. But HTTP is dying. If user enters HTTPS://www.google.com automatic logon (NTLM) not work and browser display page not found...

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  16. WPA2 Enterprise/RADIUS Feature Request (Dynamic VLAN support )

    Hi,

    We are using Kerio Control WPA2 Enterprise/RADIUS feature but we also need to give vlan support over one SSID. If its possible, can you add some options to user and groups part like USER / GROUP Vlan tag and send these options over RADIUS service.

    These are the needed info for dynamic vlan:

    Tunnel-Type: Virtual LANs (VLAN)
    Tunnel-Medium-Type: 802 (includes all 802 media plus Ethernet canonical format)
    Tunnel-Pvt-Group-ID: VLAN ID e.g. 1000

    http://www.cisco.com/c/en/us/support/docs/wireless-mobility/ wireless-vlan/71683-dynamicvlan-config.html

    I wish this feature will be come so soon Smile

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  17. must login to kerio control

    when i make traffic rule to make any authentication user login to internet if any one try to open any site not open
    few sites only go to authentication login and redirect to the site again
    but if i open google , yahoo,msn, not open

    shortly i want any one try to open any site or serves on internet login firstly on kerio control
    whether any authentication user or not

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  18. User import from CSV

    For those of us that do not use AD there is no way to bulk import users to Kerio.
    It should have the basic CSV import option as well as LDAP, MySQL, and other options.

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  19. Login Restriction Kerio Control

    Limit the use of an user account to an ip address, so the user can login only from a designated computer.

    6 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
  20. Fully customizable guest welcome page

    Possibility to fully edit welcome page and page that appears after you click continue button. And make it possible to add (translate) text of "continue" button.

    5 votes
    Vote
    Sign in
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  authentication  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Kerio Control

Feedback and Knowledge Base