ZyXEL Communications 310 User Manual page 372
Vpn firewall
Hide thumbs
Also See for 310:
- User manual (161 pages) ,
- User manual (199 pages) ,
- User manual (107 pages)
Table of Contents
Advertisement
Chapter 27 User/Group
Note: The default admin account is always authenticated locally, regardless of the
authentication method setting. (See
about authentication methods.)
Ext-User Accounts
Set up an ext-user account if the user is authenticated by an external server and you want to set
up specific policies for this user in the ZyWALL. If you do not want to set up policies for this user,
you do not have to set up an ext-user account.
All ext-user users should be authenticated by an external server, such as AD, LDAP or RADIUS. If
the ZyWALL tries to use the local database to authenticate an ext-user, the authentication attempt
always fails. (This is related to AAA servers and authentication methods, which are discussed in
Chapter 31 on page 400
Note: If the ZyWALL tries to authenticate an ext-user using the local database, the
attempt always fails.
Once an ext-user user has been authenticated, the ZyWALL tries to get the user type (see
132 on page
the ZyWALL sets the user type for this session to User.
For the rest of the user attributes, such as reauthentication time, the ZyWALL checks the following
places, in order.
User account in the remote server.
1
User account (Ext-User) in the ZyWALL.
2
Default user account for AD users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-
3
users) in the ZyWALL.
See
Setting up User Attributes in an External Server on page 382
set up the attributes in an external server.
Ext-Group-User Accounts
Ext-Group-User accounts work are similar to ext-user accounts but allow you to group users by
the value of the group membership attribute configured for the AD or LDAP server. See
31.2.1 on page 403
User Groups
User groups may consist of user accounts or other user groups. Use user groups when you want to
create the same rule for several user accounts, instead of creating separate rules for each one.
Note: You cannot put access users and admin users in the same user group.
Note: You cannot put the default admin account into any user group.
The sequence of members in a user group is not important.
372
and
Chapter 32 on page
371) from the external server. If the external server does not have the information,
for more on the group membership attribute.
Chapter 32 on page 409
409, respectively.)
for a list of attributes and how to
ZyWALL 110/310/1100 Series User's Guide
for more information
Table
Section
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications 310
Related Products for ZyXEL Communications 310
- ZyXEL Communications Prestige 314 PLUS
- ZyXEL Communications ZyXEL Prestige 304
- ZyXEL Communications ZyXEL ZyWALL 30W
- ZyXEL Communications ZYWALL 35 - V4.04
- ZyXEL Communications PRESTIGE 324
- ZyXEL Communications Unified Security Gateway ZyWALL 300
- ZyXEL Communications Prestige 316
- ZyXEL Communications 35 Series