Using Ldap Authorization With Local Authentication; Changing The Authentication Type Of The Default Realm; Configuring The Default Realm - Watchguard SSL 1000 User Manual

Vpn gateway

Hide thumbs Also See for SSL 1000:

Setup manual (6 pages)

Hardware manual (31 pages)

Quick reference manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

Table of Contents

To change a user's password

On the Access Policy Manager tab, right-click a user, and click Set Password.

Type the password twice and then click OK.

Using LDAP Authorization with Local Authentication

By default, the Firebox SSL VPN Gateway obtains an authenticated user's group(s) from the local group

file stored on the Firebox SSL VPN Gateway. Alternatively, you can configure the Firebox SSL VPN Gate-

way to obtain an authenticated user's group(s) from an LDAP server. If the user is not located on the

LDAP server, the Firebox SSL VPN Gateway checks its local group file.

To use LDAP authorization with local authentication

In the Firebox SSL VPN Gateway Administration Tool, click the Authentication tab.

Open the window for the realm that is configured for local authentication. This is the Default realm

unless the authentication type was changed.

Click the Authorization tab.

In Authorization Type, select LDAP Authorization.

Complete the information for the LDAP server.

For a description of LDAP server settings, see "Using LDAP Servers for Authentication and Authorization" on page

73. For information about looking up LDAP server settings, see "Determining Attributes in your LDAP Directory"

on page 78.

Changing the Authentication Type of the Default Realm

When a user logs on to the Default realm, the user does not have to specify a realm name. For any other

realm, the user must specify a realm name when logging on. Thus, if most users are logging on to a non-

local authentication realm, change the authentication type of the Default realm.

To change the authentication type of the Default realm, remove the Default realm and then immedi-

ately create a new one.

Configuring the Default Realm

The Firebox SSL VPN Gateway has a permanent realm named Default. The Default realm is preconfig-

ured for local authentication. If you want to change the authentication method of the Default realm, it

must be immediately replaced with a new Default realm.

The Default realm is assumed when a user enters only a user name when logging on to the Access Gate-

way. For any other realm, the user must specify a realm name when logging on. Thus, if most users are

logging on to a non-local authentication realm, change the authentication type of the Default realm.

To change the authentication type of the Default realm, remove the Default realm

and then immediately create a new realm with the appropriate authentication

configuration.

To remove and create a Default realm

Click the Authentication tab.

Open the window for the Default realm.

Administration Guide

Changing the Authentication Type of the Default Realm

Table of Contents

Troubleshooting

This manual is also suitable for:

Ssl 500 Firebox ssl series

Using Ldap Authorization With Local Authentication; Changing The Authentication Type Of The Default Realm; Configuring The Default Realm - Watchguard SSL 1000 User Manual

Using LDAP Authorization with Local Authentication

Changing the Authentication Type of the Default Realm

Configuring the Default Realm

Troubleshooting

Related Manuals for Watchguard SSL 1000

Related Content for Watchguard SSL 1000

This manual is also suitable for:

Table of Contents