NETGEAR UTM5EW-100NAS Router User Manual


 
Manage Users, Authentication, and VPN Certificates
393
ProSecure Unified Threat Management (UTM) Appliance
4. Click Apply to save your settings. The domain is added to the List of Domains table.
5. If you use local authentication, make sure that it is not disabled: in the Local Authentication
section of the Domain screen (see Figure 232 on page 388), select the No radio button.
Note: A combination of local and external authentication is supported.
WARNING:
If you disable local authentication, make sure that there is at least
one external administrative user; otherwise, access to the UTM is
blocked.
6. If you change local authentication, click Apply in the Domain screen to save your settings.
UID Attribute LDAP only The attribute in the LDAP directory that contains the user’s
identifier (UID).
For an Active Directory, enter sAMAccountName.
For an OpenLDAP directory, enter uid.
Member Groups
Attribute
This field is optional. The attribute that is used to identify the
groups that an entry belongs to.
For an Active Directory, enter memberOf.
For OpenLDAP, you can enter a customized attribute to
identify the groups of an entry.
Group Members
Attribute
This field is optional. The attribute that is used to identify the
members of a group.
For an Active Directory, enter member.
For OpenLDAP, you can enter a customized attribute to
identify the members of a group.
Additional Filter LDAP and Active
Directory
This field is optional. A filter that is used when the UTM is
searching the LDAP server for matching entries while
excluding others. (Use the format described by RFC 2254.)
The following search term examples match users only:
Active Directory. objectClass=user
Open LDAP. objectClass=posixAccount
Radius Port All RADIUS
authentication
types except
MSCHAP and
MSCHAPv2
The port number for the RADIUS server. You can enter a value
between 1 and 65535. The default port number is 1812.
Repeat The period in seconds that the UTM waits for a response from
a RADIUS server. You can enter a value between 1 and 10.
The default is 3 seconds.
Timeout The maximum number of times that the UTM attempts to
connect to a RADIUS server. You can enter a value between 3
and 30. The default is 5 times.
Table 99. Add Domain screen settings (continued)
Setting Description