8.2.8. HTTP Authentication
Example 8.1. Creating an Authentication User Group
In the example of an authentication address object in the address book, a user group "users" is used to enable
user authentication on "lannet". This example shows how to configure the user group in the NetDefendOS
database.
Web Interface
Step A
1.
Go to: User Authentication > Local User Databases > Add > LocalUserDatabase
2.
Now enter:
•
Name: lannet_auth_users
•
Comments: folder for "lannet" authentication user group - "users"
3.
Click OK
Step B
1.
Go to: lannet_auth_users > Add > User
2.
Now enter:
•
Username: Enter the user's account name, for example user1
•
Password: Enter the user's password
•
Confirm Password: Repeat the password
•
Groups: One user can be specified into more than one group - enter the group names here separated by
a comma - users for this example
3.
Click OK
4.
Repeat Step B to add all the lannet users having the membership of users group into the lannet_auth_users
folder
Example 8.2. User Authentication Setup for Web Access
The configurations below shows how to enable HTTP user authentication for the user group users on lannet. Only
users that belong to the group users can get Web browsing service after authentication, as it is defined in the IP
rule.
We assume that lannet, users, lan_ip, local user database folder lannet_auth_users and the authentication
address object lannet_users have been defined.
Web Interface
A. Set up an IP rule to allow HTTP authentication.
1.
Go to: Rules > IP Rules > Add > IP rule
2.
Now enter:
•
Name: http_auth
•
Action: Allow
•
Service: HTTP
•
Source Interface: lan
•
Source Network: lannet
402
Chapter 8. User Authentication