Chapter 34 User/Group

Table 162 User/Group > Setting (continued)

LABEL

DESCRIPTION

User idle

This is applicable for access users.

timeout

This field is effective when Enable user idle detection is checked. Type the

 

number of minutes each access user can be logged in and idle before the ZyWALL

 

automatically logs out the access user.

 

 

Force User

Use this section to specify when users must log in to the ZyWALL before the

Authentication

ZyWALL routes HTTP traffic for them. Once users have logged in, the ZyWALL can

Policy

enforce user-aware policies.

 

This section displays the conditions that are applied, in sequence, to decide what

 

the appropriate action is. By default, users do not have to log in to the ZyWALL.

 

 

Total Policy

This is the number of entries configured.

 

 

Policy per

Select how many entries to display per page in the screen.

page

 

 

 

Page x of x

This is the number of the page of entries currently displayed and the total number

 

of pages of entries. Type a page number to go to or use the arrows to navigate the

 

pages of entries.

 

 

 

 

#

This field is a sequential value, and it is not associated with a specific condition.

 

 

Schedule

This field displays the schedule object that specifies when this condition applies. It

 

displays none if this condition always applies.

 

 

Source

This field displays the source address object of traffic to which this condition

 

applies. It displays any if this condition applies to traffic from all source addresses.

 

 

Destination

This field displays the destination address object of traffic to which this condition

 

applies. It displays any if this condition applies to traffic from all destination

 

addresses.

 

 

Authenticate

This field displays whether users must log in (force) or whether users do not have

 

to log in (skip) when this condition is checked and satisfied.

 

 

Add icon

This column provides icons to add, edit, move, and remove conditions. It also

 

provides icons to activate and deactivate conditions.

 

To add a condition, click the Add icon at the top of the column or next to each

 

condition. If you click the one at the top of the column, the new condition is first in

 

the list. If you click the one next to a condition, the new condition appears right

 

below this condition.

 

To edit a condition, click the Edit icon at the top of the column or next to each

 

condition. The Force User Authentication Policy Add/Edit screen appears.

 

To remove a condition, click on the Remove icon next to the condition. The web

 

configurator confirms that you want to delete the condition before doing so.

 

To move a condition up or down in the list, click on the Move to N icon next to the

 

condition, and type the line number (# field) where you want to move this condition.

 

The # field is updated accordingly.

 

To activate or deactivate a condition, click the Active icon next to the condition.

 

Make sure you click Apply to save and apply the change.

 

 

Apply

Click Apply to save your changes back to the ZyWALL.

 

 

Reset

Click Reset to begin configuring this screen afresh.

 

 

34.4.1 Force User Authentication Policy Add/Edit

Use this screen to specify a condition when users must log in or do not have to log in to the ZyWALL before their HTTP traffic can pass through the ZyWALL.

512

 

ZyWALL USG 300 User’s Guide