ZyXEL Communications USG40 User Manual page 727
Zywall/usg series
Hide thumbs
Also See for USG40:
- User manual (742 pages) ,
- Handbook (810 pages) ,
- Reference manual (665 pages)
Table of Contents
Advertisement
All ext-user users should be authenticated by an external server, such as AD, LDAP or RADIUS. If
the ZyWALL/USG tries to use the local database to authenticate an ext-user, the authentication
attempt always fails. (This is related to AAA servers and authentication methods, which are
discussed in those chapters in this guide.)
Note: If the ZyWALL/USG tries to authenticate an ext-user using the local database, the
attempt always fails.
Once an ext-user user has been authenticated, the ZyWALL/USG tries to get the user type (see
Table 280 on page
information, the ZyWALL/USG sets the user type for this session to User.
For the rest of the user attributes, such as reauthentication time, the ZyWALL/USG checks the
following places, in order.
User account in the remote server.
1
User account (Ext-User) in the ZyWALL/USG.
2
Default user account for AD users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-
3
users) in the ZyWALL/USG.
See
Setting up User Attributes in an External Server on page 739
set up the attributes in an external server.
Ext-Group-User Accounts
Ext-Group-User accounts work are similar to ext-user accounts but allow you to group users by
the value of the group membership attribute configured for the AD or LDAP server. See
42.9.5.1 on page 788
Dynamic-Guest Accounts
Dynamic guest accounts are guest accounts, but are created dynamically and stored in the
ZyWALL/USG's local user database. A dynamic guest account has a dynamically-created user name
and password. A dynamic guest account user can access the ZyWALL/USG's services only within a
given period of time and will become invalid after the expiration date/time.
There are three types of dynamic guest accounts depending on how they are created or
authenticated: billing-users, ua-users and trial-users.
billing-users are guest account created with the guest manager account or an external printer and
paid by cash or created and paid via the on-line payment service. ua-users are users that log in
from the user agreement page. trial-users are free guest accounts that are created with the Free
Time function.
User Groups
User groups may consist of user accounts or other user groups. Use user groups when you want to
create the same rule for several user accounts, instead of creating separate rules for each one.
Note: You cannot put access users and admin users in the same user group.
Chapter 42 Object
726) from the external server. If the external server does not have the
for more on the group membership attribute.
ZyWALL/USG Series User's Guide
727
for a list of attributes and how to
Section
- Quick Links:
- Web Configurator
- Web Configurator Access
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications USG40
Related Products for ZyXEL Communications USG40
- ZyXEL Communications ZYWALL USG 300
- ZyXEL Communications USG-50 - V2.21 ED 1
- ZyXEL Communications USG-100@USG-200 - V2.20 ED 2
- ZyXEL Communications USG-300 - V2.20 ED 2
- ZyXEL Communications ZYWALL USG 20W
- ZyXEL Communications UAG Series
- ZyXEL Communications ZyWALL USG100-Plus
- ZyXEL Communications ZyWALL USG 2000