Setting Screenos Authentication Options Using Default Servers Overview; Setting Screenos Authentication Options Using Infranet Settings Overview - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING SCREENOS DEVICES GUIDE REV 01 Manual
Configuring screenos devices guide
Hide thumbs
Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING SCREENOS DEVICES GUIDE REV 01:
- Manual (340 pages) ,
- Administration manual (1026 pages) ,
- Installation manual (244 pages)
Table of Contents
Advertisement
Setting ScreenOS Authentication Options Using Default Servers Overview
Table 36: Default Servers
Default Servers
Local
External
WebAuth
Related
Documentation
Setting ScreenOS Authentication Options Using Infranet Settings Overview
Table 37: Infranet Settings
Infranet Settings
Contact Interval
Copyright © 2010, Juniper Networks, Inc.
The default servers for the security device define the authentication servers used to
provide local, external, and WebAuth user authentication. Table 36 on page 167 describes
the different default servers.
Description
Each security device contains a local (database) server called auth server. The auth
server is the default authentication server and can handle all types of authentication
that occur on the device. Usernames and authentication credentials of all local users
are stored in this database.
For the Local server only, you can set the authentication timeout, which is the number
of minutes the connection remains active after an authentication request has been
submitted and a successful authentication is received. By default, the authentication
timeout on the Local authentication server is 10 minutes. To change this timeout, enter
a new value.
Alternatively, you can select an external authentication server as the default server. To
select an external server, you must have already created and configured an
Authentication Server object in the NSM UI. You must also have defined the user accounts
for all external users on the external server. For more information, see the Network and
Security Manager Administration Guide.
When using WebAuth, an auth user first initiates an HTTP session to the IP address of
the security device that hosts WebAuth. After successful authentication, the auth user
can send traffic to the destination as permitted by one or more security policies. To
authenticate WebAuth users, you can use the Local authentication server (security
device default) or select a previously defined external auth server.
Setting ScreenOS Authentication Options Using Infranet Settings Overview on page 167
General Report Settings for ScreenOS Devices Overview on page 168
Setting ScreenOS Authentication Options Using Banners Overview on page 166
If you have deployed Juniper Networks Infranet Controllers as part of your network security
infrastructure, you can use the Infranet Settings screen on devices running ScreenOS 5.3
and later to configure the properties as described in Table 37 on page 167.
Description
The time interval (in seconds) that the Infranet Enforcer waits before attempting to
connect to the next available Infranet Controller; the default interval is set to 10 seconds.
Chapter 5: Administration
167
Advertisement
Table of Contents
