Radius Server Summary - ZyXEL Communications ZyWALL USG 300 User Manual
Unified security gateway
Hide thumbs
Also See for ZyWALL USG 300:
- User manual (1121 pages) ,
- Quick start manual (128 pages) ,
- Specifications (4 pages)
Table of Contents
Advertisement
Table 215 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add
LABEL
Base DN
Use SSL
Search time
limit
Bind DN
Password
Base DN
Login Name
Attribute
Alternative
Login Name
Attribute
Group
Membership
Attribute
Configuration
Validation
OK
Cancel
44.3 RADIUS Server Summary
Use the RADIUS screen to manage the list of RADIUS servers the ZyWALL can
use in authenticating users.
ZyWALL USG 300 User's Guide
DESCRIPTION
Specify the directory (up to 127 alphanumerical characters). For
example,
o=ZyXEL, c=US
Select Use SSL to establish a secure connection to the AD or LDAP
server(s).
Specify the timeout period (between 1 and 300 seconds) before the
ZyWALL disconnects from the AD or LDAP server. In this case, user
authentication fails.
Search timeout occurs when either the user information is not in the AD
or LDAP server(s) or the AD or LDAP server(s) is down.
Specify the bind DN for logging into the AD or LDAP server. Enter up to
127 alphanumerical characters.
For example,
cn=zywallAdmin
name.
If required, enter the password (up to 15 alphanumerical characters)
for the ZyWALL to bind (or log in) to the AD or LDAP server.
Specify the directory (up to 127 alphanumerical characters). For
example,
o=ZyXEL, c=US
Enter the type of identifier the users are to use to log in. For example
"name" or "e-mail address".
If there is a second type of identifier that the users can use to log in,
enter it here. For example "name" or "e-mail address".
An AD or LDAP server defines attributes for its accounts. Enter the
name of the attribute that the ZyWALL is to check to determine to which
group a user belongs. The value for this attribute is called a group
identifier; it determines to which group a user belongs. You can add
ext-group-user user objects to identify groups based on these group
identifier values.
For example you could have an attribute named "memberOf" with
values like "sales", "RD", and "management". Then you could also create
a ext-group-user user object for each group. One with "sales" as the
group identifier, another for "RD" and a third for "management".
Use a user account from the server specified above to test if the
configuration is correct. Enter the account's user name in the
Username field and click Test.
Click OK to save the changes.
Click Cancel to discard the changes.
Chapter 44 AAA Server
.
specifies
zywallAdmin
.
as the user
763
- Quick Links:
- Web Configurator
- Quick Setup
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
