45

Authentication Method

45.1 Overview

Authentication method objects set how the ZyWALL authenticates HTTP/HTTPS clients, peer IPSec routers (extended authentication), and L2TP VPN clients. Configure authentication method objects to have the ZyWALL use the local user database, and/or the authentication servers and authentication server groups specified by AAA server objects. By default, user accounts created and stored on the ZyWALL are authenticated locally.

45.1.1What You Can Do in this Chapter

Use the Configuration > Object > Auth. Method screens (Section 45.2 on page 734) to create and manage authentication method objects.

Finding Out More

See Section 7.6.3 on page 135 for an example of how to set up user authentication using a radius server.

45.1.2 Before You Begin

Configure AAA server objects (see Chapter 44 on page 723) before you configure authentication method objects.

45.1.3 Example: Selecting a VPN Authentication Method

After you set up an authentication method object in the Auth. Method screens, you can use it in the VPN Gateway screen to authenticate VPN users for establishing a VPN connection. Refer to the chapter on VPN for more information.

Follow the steps below to specify the authentication method for a VPN connection.

1Access the Configuration > VPN > IPSec VPN > VPN Gateway > Edit screen.

2Click Show Advance Setting and select Enable Extended Authentication.

 

733

ZyWALL USG 2000 User’s Guide