/
Step 5 - Configure the Web Interface

Step 5 - Configure the Web Interface

Apr 03, 2026

Controlling Access to the Web Interface

The BASIC > Administration page allows you to perform the following tasks for initial setup:

  • Required: Provide email addresses in the Email Notifications section of the page so the Barracuda Email Security Gateway and Barracuda Networks can send out important alerts and informative notifications if needed.

  • Change the HTTP port used to access the web interface. IMPORTANT: For security, Barracuda Networks recommends only allowing HTTPS access – see Securing the Barracuda Email Security Gateway. To enable SSL-access only, see How to Enable SSL for Administrators and Users.

  • Change the length of time users can be logged into the web interface after a period of no activity (Session Expiration Length - default is 20 minutes).

  • Specify the IP addresses and netmask of the systems that can access the web interface. All other systems will be denied access. This is configurable in the section.

Multi-Factor Authentication (MFA)

The Multi-Factor Authentication (MFA) settings on the BASIC > Administration page add an additional layer of security to the Barracuda Email Security Gateway web-based administration interface by requiring verification beyond the standard username and password. MFA can be required for all user roles.

If MFA is enabled, after entering the username and password, a one-use code will be sent via email. Only after that code is entered, will access be granted to the Email Security Gateway user interface.

The code will only be active for a limited time. If too much time has passed, the code will expire and will not grant access to the Email Security Gateway. In that case, the login will have to be retried and a new code will be emailed.

Enable – Use this option to enable or disable MFA across the system.

  • Yes – Use this option to enable multi-factor authentication across the entire system.

  • No – Disables MFA. Only the username and password will be required for login for all users across the system.

Note: It is recommended to keep MFA enabled for enhanced security.

Enroll – Use this option to enroll the administrator for MFA.

  • Yes – Initiates the MFA enrollment process. The administrator must verify their email address before MFA can be used.

  • No – Skips enrollment. MFA will not be functional for the administrator until enrollment is completed.

Note:

  • MFA must be both enabled and enrolled to take effect for the admin.

  • If MFA is enabled but not enrolled, users within the system can enroll in this feature independently.

Email Address – Enter the email address to be used by the administrator for MFA verification. Verification codes will be sent to this email address.

  • Click Verify Email to send a verification code to the specified email address.

  • After receiving the code, enter it in the verification field and click Verify Code to complete the email verification process.

Note:

  • The email address must be verified before MFA can be used.

  • Ensure the email address is accessible during login for receiving verification codes.

Customizing the Appearance of the Web interface

The ADVANCED > Appearance page allows you to customize the default images used on the web interface. This tab is only displayed on the Barracuda Email Security Gateway 600 and higher.

Changing the Language of the Web Interface

You can change the language of the web interface by selecting a language from the drop-down menu in the upper right corner of the page near the Log Off link. Supported languages include Chinese, Japanese, Spanish, French, and others. The language you select is only applied to your individual web interface. No other user’s web interface is affected.

Setting the Time Zone of the System

You can set the time zone of your Barracuda Email Security Gateway from the BASIC > Administration page. The current time on the system is automatically updated via Network Time Protocol (NTP). When the Barracuda Email Security Gateway resides behind a firewall, NTP requires port 123 to be opened for outbound UDP traffic. You can specify one or more NTP servers to use on the ADVANCED > Advanced Networking page. Each server will be tried in order until one successfully connects. The default server is ntp.barracudacentral.com.

It is important that the time zone is set correctly because this information is used in all logs and reports.
Note: The Barracuda Email Security Gateway automatically reboots when you change the time zone.

Continue with Step 6: Routing Inbound Mail.

We value your feedback.
If you have questions, suggestions, or feedback on our documentation, contact the Campus Product Documentation team.
For general product inquiries or technical support, please contact the global Barracuda Support team.