Require Users To Authenticate To The Edge - Watchguard Firebox X15 User Manual

4. In the Account Name field, type a name for the account. The user types this name to authenticate. The
account name is case-sensitive.
5. In the Full Name field, type the first and last name of the user. This is for your information only. A user
does not use this name to authenticate.
6. In the Description field, type a description for the user. This is for your information only. A user does
not use this description to authenticate.
7. In the Password field, type a password with a minimum of eight characters. Mix eight letters, numbers,
and symbols. Do not use a word you can find in a dictionary. For increased security use a minimum of
one special symbol, a number, and a mixture of uppercase and lowercase letters.
8. Type the password again in the Confirm Password field.
9. In the Administrative Access drop-down list, set the level to which your user can see and change the
Firebox X Edge configuration properties: None, Read-Only, or Full.
10. In the Session maximum timeout field, set the maximum length of time the computer can send traffic
to the external network or through a Branch Office VPN tunnel. If this field is set to zero (0) minutes,
there is no session timeout and the user can stay connected for any length of time.
11. In the Session idle timeout field, set the length of time the computer can stay authenticated when it
is idle (not passing any traffic to the external network, through a Branch Office VPN, or to the Firebox
X Edge itself). A setting of zero (0) minutes means there is no idle timeout.
12. If you want this user to have Internet access, select the Allow access to the External Network check
box. You must require user authentication for this setting to have an effect.
13. If you want this user to have access to computers on the other side of a Branch Office VPN tunnel, select
the Allow access to manual and managed VPN tunnels check box. You must require user
authentication for this setting to have an effect.
14. If you want this user to be able to use Mobile VPN with PPTP to the Edge for secure remote access,
select the Allow Remote Access with Mobile VPN with PPTP check box. You must also enable PPTP
on the VPN > Mobile VPN page for Mobile VPN with PPTP to work.
15. If you want this user to be able to use Mobile VPN with SSL to the Edge for secure remote access, select
the Allow Remote Access with Mobile VPN with SSL check box. You must also enable WatchGuard
Mobile VPN with SSL on the VPN > Mobile VPN with SSL page.
16. Click Submit.

Require users to authenticate to the Edge

When you configure user authentication, you can choose to have users see the login dialog box automatically
when they open their web browser. If you do not use this setting, users must use this procedure to
authenticate:
1. Open a web browser. You can use Mozilla Firefox, Microsoft Internet Explorer, or Netscape Navigator.
You can use other web browsers, but this is not supported. You must enable JavaScript and allow pop-
up windows from the Firebox X Edge in your web browser to authenticate.
2. To connect to the System Status page, type
of the Firebox X Edge trusted interface.
The default URL is: https://192.168.111.1
3. A security dialog box appears. Accept the warning to continue.
4. Type your user name and password. If you use a third-party authentication server, such as Active
Directory or RADIUS, you must type in the user name in the form of: domain\user.
User Guide
in the browser address bar, and the IP address
https://
User and Group Management
191