Local Authentication; Ldap Authentication; Setting Up The Iprism Ldap Client - EdgeWave iPrism Web Security Administration Manual

iPrism

Local Authentication

The iPrism's local authentication system lets you define a set of users on the iPrism itself. No
Directory Service is involved. Even if you have an external authentication server, the local user list
allows you to provide a small number of people administrative access rights to iPrism.
To create user accounts on the iPrism:
From the iPrism home page, select Users & Networks, then Local Users.
1.
Follow the instructions in
2.

LDAP Authentication

LDAP centralizes and makes user information available on a network. The iPrism can authenticate
users and, optionally, obtain access information (an iPrism Access Profile name) for those users
from an LDAP server.
Each user object within the LDAP directory may contain many attributes to associate with the user
(such as password, phone number, full name, etc.). For the iPrism to utilize users on a remote LDAP
server, that server must perform simple LDAP binds (authentications) to the user's node. When
these binds fail (i.e., passwords don't match), then the iPrism considers the authentication to have
failed, and the associated service access (Web Proxy) consequently fails.
Note: LDAP authentication does not implement the Simple Authentication and
Security Layer (SASL) mechanism.

Setting up the iPrism LDAP Client

From the iPrism home page, select System Settings, then Directory Services.
1.
Click Configure & Join.
2.
From the Authentication Mode dropdown list, select LDAP.
3.
Chapter 7 System Settings
Local Users to add a local user and add/edit administrative privilges.
Administration Guide
103