Authentication Server Types - Watchguard Firebox X1000 User Manual
Vpn gateway
Hide thumbs
Also See for Firebox X1000:
- Reference manual (264 pages) ,
- Quick start manual (38 pages) ,
- Hardware manual (30 pages)
Table of Contents
Advertisement
Chapter 10: Creating Aliases and Implementing Authentication
3
Under the From box, click Add.
4
Click Add Under and add the IP addresses of the
remote users you are allowing to authenticate
externally.
Authentication Server Types
The WatchGuard Firebox System can authenticate users
against any of five authentication server types:
•
A built-in authentication server on the Firebox
•
NT primary domain controllers
•
RADIUS-compliant authentication servers
•
CRYPTOCard authentication servers
•
SecurID authentication servers
The differences among the various authentication schemes
are essentially transparent to the user; the user performs
many or all of the same tasks to authenticate against any of
the five types of authentication.
The difference for the Firebox administrator is that for
built-in authentication, the database of usernames, pass-
words, and groups are stored on the Firebox itself. In all
other cases, the usernames, passwords, and groups are
stored on the server performing the authentication.
When the Firebox is not the authentication server, you
must set up the authentication server according to the
manufacturer's instructions and place it on the network in
a location accessible to the Firebox. It is best placed on the
trusted side for security reasons.
To specify authentication type:
1
From Policy Manager, select Setup = > Firewall
Authentication.
The Firewall Authentication dialog box appears, as shown in the
following figure.
166
WatchGuard Firebox System
Hide quick links:
Advertisement
Table of Contents
