NETGEAR SSL312 manual Active Directory Authentication

Page 42

NETGEAR ProSafe SSL VPN Concentrator 25 SSL312 Reference Manual

5.From the Portal Layout Name drop-down menu, select the name of the layout. The default layout is SSL-VPN. You can define additional layouts in the Portal Layouts page.

6.Click Apply to update the configuration. Once the domain has been added, the domain displays in the table on the Domains screen.

Active Directory Authentication

Active Directory authentication servers support a group and user structure that can be queried when an Active Directory user logs in. This means that you can create policies and bookmarks for Active Directory users at the group level, without needing to define Active Directory users in the SSL VPN Concentrator. When a user logs in, if no corresponding user name is configured in the the local database, then SSL VPN Concentrator will query the Active Directory server for the list of groups that the user belongs to. If any of the same groups are defined in the SSL VPN Concentrator, then policies and bookmarks for the first Windows Active Directory group that matches a group configured in the SSL VPN Concentrator will be applied to the user.

Once you create an Active Directory domain, you can add groups that correspond with groups on your Active Directory server. If the Active Directory user is configured in the SSL VPN Concentrator, then the SSL VPN Concentrator will ignore the group information provided by the Active Directory and, instead, implement policies and bookmarks based on the user settings and the settings of the group to which the user belongs.

Note: Because other authentication services do not have the same hierarchal structure and group definitions as Active Directory, if you want to apply specific policies or

bookmarks to a group of RADIUS, NT, or LDAP users, you must add each user on the Users and Groups screen.

Configuring for Windows Active Directory Authentication

To configure Windows Active Directory authentication:

1.Click Add Domain. An Add Domain window displays.

Note: Of all types of authentication, Active Directory authentication is the most error prone. If you are unable to authenticate using Active Directory, please read the

troubleshooting procedure at the end of this section.

3-10

Authenticating Users

v2.0, May 2007

Page 41 Page 43
Image 42
Page 41 Page 43
Contents Netgear ProSafe SSL VPN Concentrator SSL312 Reference Manual Technical Support Licensing Product and Publication Details Contents Chapter Authenticating Users Chapter Configuring the Remote Access Web Portal Chapter Monitoring and Logging About This Manual Conventions, Formats and ScopeUsing This Manual Printing this ManualPrinting a Chapter Revision History Version Date Description of ChangesKey Features Chapter IntroductionAbout the ProSafe SSL VPN Concentrator Web Browser Requirements Microsoft WindowsWhat’s in the Box Hardware DescriptionFront Panel Back Panel Steps for Deploying the SSL312 V2.0, May Chapter Installing the SSL312 Choosing a Network TopologySingle Arm Routing Initial Connection to the SSL VPN Concentrator Accessing the Management Interface Https//192.168.1.1V2.0, May Configuring Basic Network Settings V2.0, May Installing the SSL VPN Concentrator Managing CertificatesObtaining a Certificate from a Certificate Authority Generating a Self-Signed Certificate Uploading and Enabling the New Certificate V2.0, May Viewing and Deleting Certificates Steps for Further Configuration Chapter Authenticating Users Authentication DomainsLocal User Database Authentication Radius and NT Domain Authentication Configuring for Radius Domain Authentication Configuring for NT Domain Authentication Ldap Authentication Sample Ldap Attributes Ldap Attribute RulesSample Ldap Users and Attributes Settings Querying an Ldap ServerConfiguring for Ldap Authentication CN=Users,DC=yourdomain,DC=comActive Directory Authentication Configuring for Windows Active Directory AuthenticationV2.0, May Kerberos Authentication Troubleshooting Active Directory AuthenticationDeleting a Domain Https//IP/Domain Name/portal/Portal NameV2.0, May Setting Up User and Group Access Policies Determine Your RequirementsUsers, Groups and Global Policies Global Policies Editing Global Policy Settings Adding and Editing Global Policies Defining and Editing Global Bookmarks Groups Configuration Adding a New GroupEditing Group Settings Defining and Editing Group Policies V2.0, May Defining and Editing Group Bookmarks Deleting a Group Users Configuration Adding a New User V2.0, May Editing a User V2.0, May Defining and Editing User Policies Defining and Editing a User Bookmarks Using Network Resource Objects to Simplify Policies Deleting a UserV2.0, May V2.0, May V2.0, May V2.0, May Configuring the Remote Access Web Portal Portal LayoutsPortal Option Features for Remote Users Portal OptionsAdding Portal Layouts V2.0, May V2.0, May Adding Terminal Services Applications to the Portal Customizing the Banner Duplicating and Editing Portal Layouts Creating a Guide to Using the Portal V2.0, May Two Approaches for VPN SSL VPN Client Configuration Adding IP Address Ranges Adding Routes for VPN Tunnel Clients V2.0, May Configuring Applications for Port Forwarding Port Forwarding Applications/TCP Port Numbers Configuring Host Name Resolution SSHChapter Additional System Configuration Configuring Network SettingsSample SSL VPN Concentrator Configuration Network Interface and Default Gateway Configuration Default gateway address Firewall/Router addressV2.0, May Static Route Configuration V2.0, May Network Host Table Settings Configuring DNS Settings V2.0, May Setting Date and Time System Configuration Utilities Encrypting the Configuration File Exporting and Saving a Backup Configuration FileImporting a Configuration File Erasing the Configuration and Restoring the Default Settings Upgrading the SSL VPN Concentrator FirmwareAdditional Notes on the Management Interface Chapter Monitoring and Logging SSL VPN Concentrator StatusMonitoring and Logging Active Users Event Log Log Settings Send Logs Weekly Schedule Send Logs Daily Schedule V2.0, May V2.0, May Diagnostics V2.0, May Appendix a Default Settings and Technical Specifications Factory Default SettingsTechnical Specifications GMTAppendix B Related Documents Document LinkV2.0, May Index NumericsIndex-2 Index-3 Index-4 Index-5 Index-6
Related manuals
Manual 112 pages 5.2 Kb
Top Page Image Contents