• SonicOSX 7
• About Device Settings
• Managing SonicWall Licenses
  • Licenses
  • Managing Security Services
    • Services Summary
    • Managing Security Services Online
      • Managing Services from SonicOS Management Interface
      • Synchronizing Changes
    • Manual Upgrade for Closed Environments
  • Registering Your SonicWall Appliance
  • Activating the Gateway Anti-Virus, Anti-Spyware, and IPS License
  • Activating FREE TRIALs
• System Administration
  • Configuring the Firewall Name
  • Enabling Wireless LAN and IPv6
  • Changing the Administrator Name and Password
  • Configuring Login Security
    • Configuring Password Compliance
    • Configuring Login Constraints
  • Multiple Administrators Support
    • Working of Multiple Administrators Support
      • Configuration Modes
      • User Groups
      • Priority for Preempting Administrators
      • GMS and Multiple Administrator Support
    • Configuring Multiple Administrator Access
  • Enabling Enhanced Audit Logging Support
  • Configuring the Wireless LAN Controller
  • Enabling SonicOSX API and Configuring Authentication Methods
  • Enabling GMS Management
  • Configuring the Management Interface
    • Managing through HTTP/HTTPS
    • Selecting a Security Certificate
    • Controlling the Management Interface Tables
    • Enforcing TLS Version
    • Switching Configuration Modes
    • Deleting Browser Cookies
    • Configuring SSH Management
  • Client Certificate Verification
    • About Common Access Card
    • Configuring Client Certificate Verification
    • Using the Client Certificate Check
    • Checking Certificate Expiration
    • Troubleshooting User Lock Out
  • Selecting a Language
• Configuring Time Settings
  • Setting System Time
  • Configuring NTP Settings
    • Using a Custom NTP Server for Updating the Firewall Clock
    • Adding an NTP Server
    • Editing an NTP Server Entry
    • Deleting NTP Server Entry
• Managing Certificates
  • About Digital Certificates
  • About the Certificates Table
  • About Certificate Details
  • Importing Certificates
    • Importing a Local Certificate
    • Importing a Certificate Authority Certificate
    • Creating a PKCS-12 Formatted Certificate File (Linux Systems Only)
  • Deleting Certificates
  • Generating a Certificate Signing Request
  • Configuring Simple Certificate Enrollment Protocol
• Administering SNMP
  • About SNMP
  • Setting Up SNMP Access
    • Enabling and Configuring SNMP Access
      • Configuring Basic Functionality
      • Configuring SNMPv3 Engine IDs
      • Configuring Object IDs for SNMPv3 Views
    • Setting Up SNMPv3 Groups and Access
      • Creating Groups and Adding Users and Access
        • Creating a Group
        • Adding Access
        • Adding Users
  • Configuring SNMP as a Service and Adding Rules
• Firmware Settings
  • Firmware Management and Backup
    • Firmware Management & Backup Tables
      • Local Table
      • Cloud Table
      • Show Configuration Files Table
    • Searching the Table
  • Creating a Backup Firmware Image
    • Creating a Local Backup Firmware Image
    • Creating a Cloud Backup Firmware Image
    • Scheduling Firmware Image Backups
      • Scheduling a One-Time Backup
      • Scheduling Recurring Backups
      • Deleting Scheduled Backups
  • Updating Firmware
    • Updating Firmware Manually
    • Firmware Auto Update
    • Using SafeMode to Upgrade Firmware
  • Importing and Exporting Settings
    • Importing Settings
    • Exporting Settings
  • Configuring Firmware and Backup Settings
    • Send Settings or Reports by FTP
    • Sending Diagnostic Reports to Technical Support
    • Boot Settings
    • One-Touch Configuration Overrides
    • Enabling FIPS Mode
    • Enabling NDPP mode
• Restarting the System
• SonicWall Support
  • About This Document

One-Touch Configuration Overrides

Be sure to export the configuration of you SonicWall security appliance before executing a configuration override, so the current configuration may be restored. Please refer to Exporting Settings.

Be aware that the One-Touch Configuration Overrides may change the behavior of your SonicWall security appliance. Review the list of configurations before applying One-Touch Configuration Overrides. In particular, these configurations may affect your experience:

• Administrator password requirements on the Device | Settings page
• Requiring HTTPS management
• Disabling HTTP-to-HTTPS redirect
• Disabling Ping management

The One-Touch Configuration Overrides feature is configured on the Settings dialog available from the Device | Settings > Firmware and Settings page. It can be thought of as a quick tune-up for your SonicWall network security appliance’s security settings. With a single click, One-Touch Configuration Overrides applies over sixty configuration settings to implement SonicWall’s recommended best practices. These settings ensure that your appliance is taking advantage of SonicWall’s security features.

To override the One-Touch Configuration settings

A system restart is required for the updates to take full effect.

1. Navigate to Device | Settings > Firmware and Settings.
2. Click Settings. The Settings dialog is displayed.

3. Scroll to the ONE-TOUCH CONFIGURATION OVERRIDES section.

   

   • DPI and Stateful Firewall Security - For network environments with Deep Packet Inspection (DPI) security services enabled, such as Gateway Anti-Virus, Intrusion Prevention, Anti-Spyware, and App Rules.
   • Stateful Firewall Security - For network environments that do not have DPI security services enabled, but still want to employ SonicWall’s stateful firewall security best practices.

   Both of the One-Touch Configuration Overrides deployments implement the following configurations:

   • Configure Administrator security best practices
   • Enforce HTTPS login and disables ping
   • Configure DNS Rebinding
   • Configure Access Rules best practices
   • Configure Firewall Settings best practices
   • Configure Firewall Flood Protection best practices
   • Configure VPN Advanced settings best practices
   • Configure Log levels
   • Enable Flow Reporting and Visualization

   The DPI and Stateful Firewall Security deployment also configures the following DPI-related configurations:

   • Enable DPI services on all applicable zones
   • Enable App Rules
   • Configure Gateway Anti-Virus best practices
   • Configure Intrusion Prevention best practices
   • Configure Anti-Spyware best practices

   To see exactly which settings are reconfigured, click on the Preview link next to each button. A page displays with a list of each setting and the value to which it will be set.