User Management
Configuring User Authentication Settings
Cisco ISA500 Series Integrated Security Appliances Administration Guide 397
9
•Default User Group to Which All RADIUS Users Belong: Choose a local
user group as the default group to which the RADIUS users belong. If the
group does not exist in the local database when getting user group
information from the RADIUS server, the RADIUS user will be automatically
set to the specified local user group.
STEP 6 In the Te st tab, enter the user’s credentials in the User and Password fields, and
then click the Tes t button to verify whether the RADIUS user is valid.
STEP 7 Click OK to save your settings.
STEP 8 Click Save to apply your settings.
Using Local Database and RADIUS Ser ver for User AuthenticationYou can use both the local database and RADIUS server to authenticate users who
try to access the network.
When a user authenticates, the security appliance first verifies the user’s
credentials through the RADIUS server. The RADIUS server returns the
authentication results to the security appliance. For a valid RADIUS user, the
security appliance checks its user group service policy from the local database
and permits access. For an invalid RADIUS user, then the security appliance uses
the local database to verify it again. For a valid local user, the security appliance
checks its user group service policy from the local database and permits access.
For an invalid local user, the security appliance blocks access.
STEP 1 Click Users > User Authentication.
STEP 2 Choose RADIUS + Local Database as the authentication method.
STEP 3 Click Configure to configure the RADIUS settings for user authentication. For
complete details, see Using RADIUS Server for User Authentication, page 394.
STEP 4 Click Save to apply your settings.