User Guide
Page 25
...Need to Know 743 42.2 The Service Summary Screen 744 42.2.1 The Service Add/Edit Screen 746 42.3 The Service Group Summary Screen 746 42.3.1 The Service Group Add/Edit Screen 748 Chapter 43 Schedules ...749 43.1 Overview ...749 43.1.1 What You Can Do in this Chapter ...an Active Directory or LDAP Server 759 44.3 RADIUS Server Summary 761 44.3.1 Adding a RADIUS Server 763 Chapter 45 Authentication Method ...765 45.1 Overview ...765 45.1.1 What You Can Do in this Chapter 765 45.1.2 Before You Begin 765 45.1.3 Example: Selecting a VPN Authentication Method 765 ZyWALL USG 100/200 Series...
...Need to Know 743 42.2 The Service Summary Screen 744 42.2.1 The Service Add/Edit Screen 746 42.3 The Service Group Summary Screen 746 42.3.1 The Service Group Add/Edit Screen 748 Chapter 43 Schedules ...749 43.1 Overview ...749 43.1.1 What You Can Do in this Chapter ...an Active Directory or LDAP Server 759 44.3 RADIUS Server Summary 761 44.3.1 Adding a RADIUS Server 763 Chapter 45 Authentication Method ...765 45.1 Overview ...765 45.1.1 What You Can Do in this Chapter 765 45.1.2 Before You Begin 765 45.1.3 Example: Selecting a VPN Authentication Method 765 ZyWALL USG 100/200 Series...
User Guide
Page 55
... schedules. Trusted Certificates Import and manage certificates from trusted sources. Date/Time Configure the current date, time, and time zone in the ZyWALL. ZyWALL USG 100/200 Series User's Guide 55 Object User/Group User Create and manage users. Service Group Create and manage groups of Active Directory Group servers. SSL Application Create SSL web application or file sharing objects.
... schedules. Trusted Certificates Import and manage certificates from trusted sources. Date/Time Configure the current date, time, and time zone in the ZyWALL. ZyWALL USG 100/200 Series User's Guide 55 Object User/Group User Create and manage users. Service Group Create and manage groups of Active Directory Group servers. SSL Application Create SSL web application or file sharing objects.
User Guide
Page 552
... in IPSec Configuration Required for details). Select a user or user group that another interface received from the remote user. Otherwise, select any to allow any traffic from its last-saved settings. 552 ZyWALL USG 100/200 Series User's Guide Second DNS You can use must log into .... You can specify these IP addresses two ways. Allowed User The authentication method has the ZyWALL check a user's user name and password against the ZyWALL's local database, a remote LDAP, RADIUS, a Active Directory server, or more than one you need to the remote users. See Chapter 45 on...
... in IPSec Configuration Required for details). Select a user or user group that another interface received from the remote user. Otherwise, select any to allow any traffic from its last-saved settings. 552 ZyWALL USG 100/200 Series User's Guide Second DNS You can use must log into .... You can specify these IP addresses two ways. Allowed User The authentication method has the ZyWALL check a user's user name and password against the ZyWALL's local database, a remote LDAP, RADIUS, a Active Directory server, or more than one you need to the remote users. See Chapter 45 on...
User Guide
Page 664
...category includes pages that support searching the Internet, indices, and directories. Reference This category includes pages containing personal, professional, or ... public policy, public opinion, social practice, or economic activities. Blogs/Newsgroups This category includes pages that provide assistance...Groups This category includes pages sponsored by or which return graphical results (i.e. Job Search/Careers This category includes pages that offer access to a disease or condition. Open Image/Media Search This category includes pages with blogs. 664 ZyWALL USG 100/200...
...category includes pages that support searching the Internet, indices, and directories. Reference This category includes pages containing personal, professional, or ... public policy, public opinion, social practice, or economic activities. Blogs/Newsgroups This category includes pages that provide assistance...Groups This category includes pages sponsored by or which return graphical results (i.e. Job Search/Careers This category includes pages that offer access to a disease or condition. Open Image/Media Search This category includes pages with blogs. 664 ZyWALL USG 100/200...
User Guide
Page 755
...Active Directory, LDAP, or RADIUS server. Otherwise, access is shown next. A network example is blocked. The AAA server can use AAA server objects in configuring ext-group-user user objects and authentication method objects (see Chapter 45 on page 765). 44.1.1 Directory Service (AD/LDAP) LDAP/AD allows a client (the ZyWALL... in with a user name and password pair. 2 The ZyWALL tries to bind (or log in the directory against the user name and password pair. 4 If it matches, the user is allowed access. ZyWALL USG 100/200 Series User's Guide 755 You use a AAA (Authentication, ...
...Active Directory, LDAP, or RADIUS server. Otherwise, access is shown next. A network example is blocked. The AAA server can use AAA server objects in configuring ext-group-user user objects and authentication method objects (see Chapter 45 on page 765). 44.1.1 Directory Service (AD/LDAP) LDAP/AD allows a client (the ZyWALL... in with a user name and password pair. 2 The ZyWALL tries to bind (or log in the directory against the user name and password pair. 4 If it matches, the user is allowed access. ZyWALL USG 100/200 Series User's Guide 755 You use a AAA (Authentication, ...
User Guide
Page 759
... address of AD or LDAP servers the ZyWALL can modify the entry's settings. For example, o=ZyXEL, c=US. 44.2.1 Adding an Active Directory or LDAP Server Click Object > AAA Server > Active Directory (or LDAP) to display the Active Directory (or LDAP) screen. Click the Add...Active Directory (or LDAP) The following table describes the labels in authenticating users. The ZyWALL confirms you can use in this to create a new entry. See Section 13.3.2 on groups. 44.2 Active Directory or LDAP Server Summary Use the Active Directory or LDAP screen to display the ZyWALL USG 100/200 ...
... address of AD or LDAP servers the ZyWALL can modify the entry's settings. For example, o=ZyXEL, c=US. 44.2.1 Adding an Active Directory or LDAP Server Click Object > AAA Server > Active Directory (or LDAP) to display the Active Directory (or LDAP) screen. Click the Add...Active Directory (or LDAP) The following table describes the labels in authenticating users. The ZyWALL confirms you can use in this to create a new entry. See Section 13.3.2 on groups. 44.2 Active Directory or LDAP Server Summary Use the Active Directory or LDAP screen to display the ZyWALL USG 100/200 ...
User Guide
Page 760
...Backup Server If the AD or LDAP server has a backup server, enter its address here. Table 213 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add LABEL DESCRIPTION Name Enter a descriptive name (up to create a new AD or LDAP entry or edit an existing ...a number between 1 and 65535. Figure 509 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add The following screen. Chapter 44 AAA Server following table describes the labels in this group. 760 ZyWALL USG 100/200 Series User's Guide Description Enter the description of the AD or LDAP server.
...Backup Server If the AD or LDAP server has a backup server, enter its address here. Table 213 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add LABEL DESCRIPTION Name Enter a descriptive name (up to create a new AD or LDAP entry or edit an existing ...a number between 1 and 65535. Figure 509 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add The following screen. Chapter 44 AAA Server following table describes the labels in this group. 760 ZyWALL USG 100/200 Series User's Guide Description Enter the description of the AD or LDAP server.
User Guide
Page 761
..." or "e-mail address". One with values like "sales", "RD", and "management". ZyWALL USG 100/200 Series User's Guide 761 Enter the type of identifier that the ZyWALL is called a group identifier; An AD or LDAP server defines attributes for "management". Enter the name of ...user name. Specify the directory (up to 127 alphanumerical characters. Use a user account from the AD or LDAP server. Chapter 44 AAA Server Table 213 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add LABEL DESCRIPTION Base DN Specify the directory (up to 15 alphanumerical...
..." or "e-mail address". One with values like "sales", "RD", and "management". ZyWALL USG 100/200 Series User's Guide 761 Enter the type of identifier that the ZyWALL is called a group identifier; An AD or LDAP server defines attributes for "management". Enter the name of ...user name. Specify the directory (up to 127 alphanumerical characters. Use a user account from the AD or LDAP server. Chapter 44 AAA Server Table 213 Configuration > Object > AAA Server > Active Directory (or LDAP) > Add LABEL DESCRIPTION Base DN Specify the directory (up to 15 alphanumerical...
User Guide
Page 1107
...757 and users 722 directory service 755 LDAP 755, 757 local user database 757 object, where used 111 RADIUS 756, 757, 761 RADIUS group 763 see also RADIUS access 47 access control attacks 607 Access Point Name, see APN access point, See AP 323 ZyWALL USG 100/200 Series User's Guide Index...accounting server 755 Active Directory, see AD active protocol 506 AH 506 and encapsulation 507 ESP 506 active sessions 226, 232, 247 ActiveX 670 AD 755, 758, 759, 761, 762 directory structure 757 Distinguished Name, see DN password 761 port 760, 763 search time limit 761 SSL 761 address groups 737 and content...
...757 and users 722 directory service 755 LDAP 755, 757 local user database 757 object, where used 111 RADIUS 756, 757, 761 RADIUS group 763 see also RADIUS access 47 access control attacks 607 Access Point Name, see APN access point, See AP 323 ZyWALL USG 100/200 Series User's Guide Index...accounting server 755 Active Directory, see AD active protocol 506 AH 506 and encapsulation 507 ESP 506 active sessions 226, 232, 247 ActiveX 670 AD 755, 758, 759, 761, 762 directory structure 757 Distinguished Name, see DN password 761 port 760, 763 search time limit 761 SSL 761 address groups 737 and content...
User Guide
Page 1113
...device HA 699 active-passive mode 699, 702 cluster ID 702, 916 configuration overview 110 copying configuration 700 device role 705 HA status 702 legacy mode 699, 709 link monitoring 709 management access 700 management IP address 700 modes 699 monitored interfaces 703, 707 ZyWALL USG 100/200 Series User's Guide... directory service 755 file structure 757 1113 dial-in management answer rings 860 AT command strings 859 Dial string 859 DTR 859 initial string 861 mute 860 port speed 861 response strings 860 dial-in server 860 Differentiated Services Code Point (DSCP) 613 Diffie-Hellman key group 501...
...device HA 699 active-passive mode 699, 702 cluster ID 702, 916 configuration overview 110 copying configuration 700 device role 705 HA status 702 legacy mode 699, 709 link monitoring 709 management access 700 management IP address 700 modes 699 monitored interfaces 703, 707 ZyWALL USG 100/200 Series User's Guide... directory service 755 file structure 757 1113 dial-in management answer rings 860 AT command strings 859 Dial string 859 DTR 859 initial string 861 mute 860 port speed 861 response strings 860 dial-in server 860 Differentiated Services Code Point (DSCP) 613 Diffie-Hellman key group 501...
User Guide
Page 1132
...ZyWALL USG 100/200 Series User's Guide Index and MAC address 338 ID 338 troubleshooting 907 VLAN interfaces 292, 339 and Ethernet interfaces 339, 907 basic characteristics 293 virtual 359 VoIP pass through 438 and firewall 434 and NAT 434 and policy routes 433, 434 see also ALG 432 VPN 471 active... virtual router ID (VR ID) 718 VRRP groups 709 and interfaces 709 and to-ZyWALL firewall 709 authentication 709 role (desired) 713 ...-based SSL application 797 configuration example 798 create 800 weblink 798 webroot-directory-traversal attack 647 weighted round robin (for load balancing) 370 white...
...ZyWALL USG 100/200 Series User's Guide Index and MAC address 338 ID 338 troubleshooting 907 VLAN interfaces 292, 339 and Ethernet interfaces 339, 907 basic characteristics 293 virtual 359 VoIP pass through 438 and firewall 434 and NAT 434 and policy routes 433, 434 see also ALG 432 VPN 471 active... virtual router ID (VR ID) 718 VRRP groups 709 and interfaces 709 and to-ZyWALL firewall 709 authentication 709 role (desired) 713 ...-based SSL application 797 configuration example 798 create 800 weblink 798 webroot-directory-traversal attack 647 weighted round robin (for load balancing) 370 white...