Table of Contents
Advertisement
If an authorization server works together with an authentication server, the user groups that are registered
in the authorization server can be assigned to a user for Remote Web Console.
The following figure shows login workflow when an authentication server and an authorization server are
used in combination:
Figure 8: Logging in when an authentication server and an authorization server are used in
combination
You can use the authentication server without knowing the host names and port numbers, if you register
the information of the authentication server as an SRV record in the DNS server. If you register the
multiple numbers of authentication servers to the SRV record, you can determine the authentication
server to be used, based on the priority that has been set in advance.
Authentication server protocols
Authentication servers support the following protocols:
•
LDAP v3 Simple bind authentication
•
RFC2865 compliant RADIUS with PAP and CHAP authentication
•
Kerberos v5
The certificate file formats available for LDAP server setting are:
•
DER-encoded binary X509
•
Base 64 encoded X509
One of following encryption types must be used for the Kerberos server:
Windows
•
AES128-CTS-HMAC-SHA1-96
•
RC4-HMAC
•
DES3-CBC-SHA1
•
DES-CBC-CRC
•
DES-CBC-MD5
Setting up and managing user accounts
43
Advertisement
Table of Contents
