Support User Manuals

NETGEAR UTM5EW-100NAS Router User Manual

Open as PDF

of 704

Manage Users, Authentication, and VPN Certificates

393

ProSecure Unified Threat Management (UTM) Appliance

4. Click Apply to save your settings. The domain is added to the List of Domains table.

5. If you use local authentication, make sure that it is not disabled: in the Local Authentication

section of the Domain screen (see Figure 232 on page 388), select the No radio button.

Note: A combination of local and external authentication is supported.

WARNING:

If you disable local authentication, make sure that there is at least

one external administrative user; otherwise, access to the UTM is

blocked.

6. If you change local authentication, click Apply in the Domain screen to save your settings.

UID Attribute LDAP only The attribute in the LDAP directory that contains the user’s

identifier (UID).

For an Active Directory, enter sAMAccountName.

For an OpenLDAP directory, enter uid.

Member Groups

Attribute

This field is optional. The attribute that is used to identify the

groups that an entry belongs to.

For an Active Directory, enter memberOf.

For OpenLDAP, you can enter a customized attribute to

identify the groups of an entry.

Group Members

Attribute

This field is optional. The attribute that is used to identify the

members of a group.

For an Active Directory, enter member.

For OpenLDAP, you can enter a customized attribute to

identify the members of a group.

Additional Filter LDAP and Active

Directory

This field is optional. A filter that is used when the UTM is

searching the LDAP server for matching entries while

excluding others. (Use the format described by RFC 2254.)

The following search term examples match users only:

Active Directory. objectClass=user

Open LDAP. objectClass=posixAccount

Radius Port All RADIUS

authentication

types except

MSCHAP and

MSCHAPv2

The port number for the RADIUS server. You can enter a value

between 1 and 65535. The default port number is 1812.

Repeat The period in seconds that the UTM waits for a response from

a RADIUS server. You can enter a value between 1 and 10.

The default is 3 seconds.

Timeout The maximum number of times that the UTM attempts to

connect to a RADIUS server. You can enter a value between 3

and 30. The default is 5 times.

Table 99. Add Domain screen settings (continued)

Setting Description

previous next