ZyXEL Communications ZyWall 110 User Manual page 624
Security firewalls
Hide thumbs
Also See for ZyWall 110:
- User manual (1090 pages) ,
- Handbook (749 pages) ,
- Handbook & instructions (255 pages)
Table of Contents
Advertisement
The following table describes the labels in this screen.
Table 275 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add
LABEL
DESCRIPTION
Name
Enter a descriptive name (up to 63 alphanumerical characters) for identification
purposes.
Description
Enter the description of each server, if any. You can use up to 60 printable ASCII
characters.
Server Address
Enter the address of the AD or LDAP server.
Backup Server
If the AD or LDAP server has a backup server, enter its address here.
Address
Port
Specify the port number on the AD or LDAP server to which the ZyWALL/USG sends
authentication requests. Enter a number between 1 and 65535.
This port number should be the same on all AD or LDAP server(s) in this group.
Base DN
Specify the directory (up to 127 alphanumerical characters). For example,
c=US
This is only for LDAP.
Use SSL
Select Use SSL to establish a secure connection to the AD or LDAP server(s).
Search time limit
Specify the timeout period (between 1 and 300 seconds) before the ZyWALL/USG
disconnects from the AD or LDAP server. In this case, user authentication fails.
Search timeout occurs when either the user information is not in the AD or LDAP
server(s) or the AD or LDAP server(s) is down.
Case-sensitive
Select this if the server checks the case of the usernames.
User Names
Bind DN
Specify the bind DN for logging into the AD or LDAP server. Enter up to 127
alphanumerical characters.
For example,
Password
If required, enter the password (up to 15 alphanumerical characters) for the ZyWALL/
USG to bind (or log in) to the AD or LDAP server.
Retype to Confirm Retype your new password for confirmation.
Login Name
Enter the type of identifier the users are to use to log in. For example "name" or "e-mail
Attribute
address".
Alternative Login
If there is a second type of identifier that the users can use to log in, enter it here. For
Name Attribute
example "name" or "e-mail address".
Group
An AD or LDAP server defines attributes for its accounts. Enter the name of the attribute
Membership
that the ZyWALL/USG is to check to determine to which group a user belongs. The value
Attribute
for this attribute is called a group identifier; it determines to which group a user belongs.
You can add ext-group-user user objects to identify groups based on these group
identifier values.
For example you could have an attribute named "memberOf" with values like "sales",
"RD", and "management". Then you could also create a ext-group-user user object for
each group. One with "sales" as the group identifier, another for "RD" and a third for
"management".
Domain
Select the Enable checkbox to enable domain authentication for MSChap.
Authentication for
This is only for Active Directory.
MSChap
User Name
Enter the user name for the user who has rights to add a machine to the domain.
This is only for Active Directory.
User Password
Enter the password for the associated user name.
This is only for Active Directory.
Chapter 35 Object
.
cn=zywallAdmin
ZyWALL/USG Series User's Guide
624
specifies
zywallAdmin
o=ZyXEL,
as the user name.
- Quick Links:
- Web Configurator
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Related Manuals for ZyXEL Communications ZyWall 110
Related Products for ZyXEL Communications ZyWall 110
- ZyXEL Communications 11Mbps Wireless LAN PC Card
- ZyXEL Communications Prestige 128L
- ZyXEL Communications Internet Security Gateway 10~100 Series
- ZyXEL Communications PRESTIGE 128
- ZyXEL Communications Version 1.03
- ZyXEL Communications Prestige 128Plus
- ZyXEL Communications USG FLEX 100H
- ZyXEL Communications 100230