Manage Users, Authentication, and VPN Certificates
409
ProSecure Unified Threat Management (UTM) Appliance
3. Modify the settings as explained in the following table:
4. Click Apply to save your settings.
DC Agent
If you set up an open network, you would want to allow unauthenticated users to surf
anonymously. For a secure network, you would use a more restrictive access policy for
unauthenticated users and a less restricted access policy for authenticated users.
Without the use of the DC agent, any Active Directory (AD) domain user surfs anonymously
until providing credentials to the UTM in order to proceed past a blocked web activity. With
use of the DC agent, an AD domain user is immediately known to the UTM when he or she is
authenticated on a DC server on which the DC agent is installed, allowing a single sign-on
(SSO).
If the AD authenticates through a domain controller (DC) server that runs Windows Server
2003 with Service Pack 1 (SP1) or Windows Server 2008, you can use the ProSecure DC
Agent software to authenticate AD domain users.
Table 104. Edit User screen settings
Setting Description
Select User
Type
From the drop-down list, select one of the predefined user types that determines the
access credentials:
• Administrator. User who has full access and the capacity to change the UTM
configuration (that is, read/write access).
• SSL VPN User. User who can log in only to the SSL VPN portal.
• IPSEC VPN User. User who can make an IPSec VPN connection only through a
NETGEAR ProSafe VPN Client, and only when the XAUTH feature is enabled (see
Configure Extended Authentication (XAUTH) on page 308).
• Guest User. User who can only view the UTM configuration (that is, read-only
access).
• PPTP VPN User. A user who can make a connection to the PPTP server only.
• L2TP VPN User. A user who can make a connection to the L2TP server only.
Check to Edit
Password
Select this check box to make the password fields accessible to modify the password.
Enter Your Password Enter the old password.
New Password Enter the new password.
Confirm New Password Reenter the new password for confirmation.
Idle Timeout The period after which an idle user is automatically logged out of the web management
interface. The default idle time-out period is 5 minutes.
Note: The idle time-out is not applicable to PPTP and L2TP users because the user
time-out is already specified on the PPTP Server screen (see Configure the PPTP Server
on page 331) and L2TP Server screen (see Configure the L2TP Server on page 334).