ProSecure Unified Threat Management (UTM) Appliance

Table 89. SSL VPN Wizard Step 2 of 6 screen settings (domain settings) (continued)

Setting

Description

 

 

 

 

Search Base

LDAP and Active

The DN at which to start the search, specified as a sequence of

 

Directory

relative distinguished names (RDNs), connected with commas

 

(continued)

and without any blank spaces. For most users, the search base is

 

 

a variation of the domain name. For example, if your domain is

 

 

yourcompany.com, your search base DN might be as follows: dc=

 

 

yourcompany,dc=com.

 

 

 

UID Attribute

LDAP only

The attribute in the LDAP directory that contains the user’s

 

 

identifier (UID).

 

 

For an Active Directory, enter sAMAccountName.

 

 

For an OpenLDAP directory, enter uid.

 

 

 

Member Groups

 

This field is optional. The attribute that is used to identify the

Attribute

 

groups that an entry belongs to.

 

 

For an Active Directory, enter memberOf.

 

 

For OpenLDAP, you can enter a customized attribute to identify

 

 

the groups of an entry.

Group Members

 

This field is optional. The attribute that is used to identify the

Attribute

 

members of a group.

 

 

For an Active Directory, enter member.

 

 

For OpenLDAP, you can enter a customized attribute to identify

 

 

the members of a group.

 

 

 

Additional Filter

LDAP and Active

This field is optional. A filter that is used when the UTM is

 

Directory

searching the LDAP server for matching entries while excluding

 

 

others. (Use the format described by RFC 2254.)

 

 

The following search term examples match users only:

 

 

Active Directory. objectClass=user

 

 

Open LDAP. objectClass=posixAccount

 

 

 

Radius Port

All RADIUS

The port number for the RADIUS server. You can enter a value

 

authentication

between 1 and 65535. The default port number is 1812.

 

types except

 

Repeat

The period in seconds that the UTM waits for a response from a

MSCHAP and

 

MSCHAPv2

RADIUS server. You can enter a value between 1 and 10. The

 

 

default is 3 seconds.

Timeout

 

The maximum number of times that the UTM attempts to connect

 

 

to a RADIUS server. You can enter a value between 3 and 30. The

 

 

default is 5 times.

After you have completed the steps in the SSL VPN Wizard, you can change the domain settings by selecting Users > Domains. For more information about domain settings, see Configure Domains on page 388.

Virtual Private Networking Using SSL Connections

346

Page 346
Image 346
NETGEAR UTM5EW-100NAS, STM150EW-100NAS manual 346