User Manual
Page 22
....2.1 User Add/Edit Screen 586 35.3 User Group Summary Screen 589 35.3.1 Group Add/Edit Screen 590 35.4 Setting Screen ...591 35.4.1 Default User Authentication Timeout Settings Edit Screens 594 35.4.2 User Aware Login Example 596 35.5 User /Group Technical Reference 597 Chapter 36 Addresses...599 36.1 Overview ...599 22 ZyWALL USG 50 User's Guide
....2.1 User Add/Edit Screen 586 35.3 User Group Summary Screen 589 35.3.1 Group Add/Edit Screen 590 35.4 Setting Screen ...591 35.4.1 Default User Authentication Timeout Settings Edit Screens 594 35.4.2 User Aware Login Example 596 35.5 User /Group Technical Reference 597 Chapter 36 Addresses...599 36.1 Overview ...599 22 ZyWALL USG 50 User's Guide
User Manual
Page 44
...use the OTP (One-Time Password) token to generate a number. Figure 10 Update Admin Info Screen 44 ZyWALL USG 50 User's Guide Figure 9 Login Screen 3 Type the user name (default: "admin") and password (default: "1234"). Chapter 3 Web Configurator 2 Open your account is configured to use an ASAS authentication server, use...token to generate a new number the next time you logged in using the default user name and password, the Update Admin Info screen (Figure 10 on page 45) appears. By default, the ZyWALL automatically routes this request to its HTTPS server, and it in the One-Time...
...use the OTP (One-Time Password) token to generate a number. Figure 10 Update Admin Info Screen 44 ZyWALL USG 50 User's Guide Figure 9 Login Screen 3 Type the user name (default: "admin") and password (default: "1234"). Chapter 3 Web Configurator 2 Open your account is configured to use an ASAS authentication server, use...token to generate a new number the next time you logged in using the default user name and password, the Update Admin Info screen (Figure 10 on page 45) appears. By default, the ZyWALL automatically routes this request to its HTTPS server, and it in the One-Time...
User Manual
Page 45
... default password, the Login screen (Figure 9 on page 45): • A - If you click Apply. otherwise the dashboard appears as illustrated in using its default configuration (see Chapter 4 on page 59); Figure 11 Dashboard A BC 3.3 Web Configurator Screens Overview The Web Configurator screen is using the default user name and default password. Figure 12 Title Bar ZyWALL USG 50...
... default password, the Login screen (Figure 9 on page 45): • A - If you click Apply. otherwise the dashboard appears as illustrated in using its default configuration (see Chapter 4 on page 59); Figure 11 Dashboard A BC 3.3 Web Configurator Screens Overview The Web Configurator screen is using the default user name and default password. Figure 12 Title Bar ZyWALL USG 50...
User Manual
Page 51
... current date, time, and time zone in the ZyWALL. Language Select the Web Configurator language. Log & Report ZyWALL USG 50 User's Guide 51 Schedule Create one-time and recurring schedules. AAA Server Active Directory- RADIUS-Default Configure the default RADIUS settings. Certificate My Certificates Create and manage the ZyWALL's certificates. SSL Application Create SSL web application objects...
... current date, time, and time zone in the ZyWALL. Language Select the Web Configurator language. Log & Report ZyWALL USG 50 User's Guide 51 Schedule Create one-time and recurring schedules. AAA Server Active Directory- RADIUS-Default Configure the default RADIUS settings. Certificate My Certificates Create and manage the ZyWALL's certificates. SSL Application Create SSL web application objects...
User Manual
Page 161
...OK - This is the version number of the users who are currently logged in to the ZyWALL. ZyWALL USG 50 User's Guide 161 System Status System Uptime This field displays how long the ZyWALL has been running since it last restarted or was successful. VPN Status Click this to look...Status For cellular (3G) interfaces, see Section 9.9 on page 183 for the first time or you intentionally reset the ZyWALL to the system default settings. Current Login User This field displays the user name used to log in to the current session, the amount of reauthentication time remaining,...
...OK - This is the version number of the users who are currently logged in to the ZyWALL. ZyWALL USG 50 User's Guide 161 System Status System Uptime This field displays how long the ZyWALL has been running since it last restarted or was successful. VPN Status Click this to look...Status For cellular (3G) interfaces, see Section 9.9 on page 183 for the first time or you intentionally reset the ZyWALL to the system default settings. Current Login User This field displays the user name used to log in to the current session, the amount of reauthentication time remaining,...
User Manual
Page 353
...an Authentication Policy Click Configuration > Auth. ZyWALL USG 50 User's Guide 353 Priority This is the position of priority. none means the policy is inactive. If the entry has a description configured, it displays here. Click this screen to the login screen. Use this button to return the... your changes to the login screen. Users do not need to be authenticated. Users need to be authenticated. The ZyWALL will not redirect them to the ZyWALL. Click this policy applies. The priority is n/a for the default authentication policy that the ZyWALL uses on traffic that...
...an Authentication Policy Click Configuration > Auth. ZyWALL USG 50 User's Guide 353 Priority This is the position of priority. none means the policy is inactive. If the entry has a description configured, it displays here. Click this screen to the login screen. Use this button to return the... your changes to the login screen. Users do not need to be authenticated. Users need to be authenticated. The ZyWALL will not redirect them to the ZyWALL. Click this policy applies. The priority is n/a for the default authentication policy that the ZyWALL uses on traffic that...
User Manual
Page 355
... default policy. Select the endpoint security objects to use the up and down arrows to have the ZyWALL repeat checking time the endpoint security check at a regular interval. When a user's computer matches an endpoint security object the ZyWALL grants access and stops checking. ZyWALL USG 50 ...User's Guide 355 Chapter 21 Authentication Policy Table 102 Configuration > Auth. See Chapter 46 on page 723 for packets that require authentication. Click OK to save your changes back to the login screen. Click...
... default policy. Select the endpoint security objects to use the up and down arrows to have the ZyWALL repeat checking time the endpoint security check at a regular interval. When a user's computer matches an endpoint security object the ZyWALL grants access and stops checking. ZyWALL USG 50 ...User's Guide 355 Chapter 21 Authentication Policy Table 102 Configuration > Auth. See Chapter 46 on page 723 for packets that require authentication. Click OK to save your changes back to the login screen. Click...
User Manual
Page 417
...mode SSL VPN access. Message Login Message The ZyWALL displays the normal login screen without the button for SSL VPN login. You can specify up to the default settings unless it conflicts with spaces allowed. For example, www.zyxel.com is a fully qualified ...domain name where "www" is established successfully. Figure 243 VPN > SSL VPN > Global Setting The following table describes the labels in and an SSL VPN connection is the host; so you could use one of the ZyWALL (or a gateway device) for each of two WAN ports. ZyWALL USG 50...
...mode SSL VPN access. Message Login Message The ZyWALL displays the normal login screen without the button for SSL VPN login. You can specify up to the default settings unless it conflicts with spaces allowed. For example, www.zyxel.com is a fully qualified ...domain name where "www" is established successfully. Figure 243 VPN > SSL VPN > Global Setting The following table describes the labels in and an SSL VPN connection is the host; so you could use one of the ZyWALL (or a gateway device) for each of two WAN ports. ZyWALL USG 50...
User Manual
Page 583
...Section 35.3 on page 591) controls default settings, login settings, lockout settings, and other user groups. CHAPTER 35 User/Group 35.1 Overview This chapter describes how to set up user accounts, user groups, and user settings for the ZyWALL. Table 170 Types of access users ...are used in firewall rules and application patrol, in the ZyWALL. User groups may consist of User Accounts TYPE ABILITIES LOGIN METHOD(S) Admin Users admin Change ZyWALL configuration (web, CLI) WWW, TELNET, SSH, FTP, Console ZyWALL USG 50 User's Guide 583 You can also set up rules that...
...Section 35.3 on page 591) controls default settings, login settings, lockout settings, and other user groups. CHAPTER 35 User/Group 35.1 Overview This chapter describes how to set up user accounts, user groups, and user settings for the ZyWALL. Table 170 Types of access users ...are used in firewall rules and application patrol, in the ZyWALL. User groups may consist of User Accounts TYPE ABILITIES LOGIN METHOD(S) Admin Users admin Change ZyWALL configuration (web, CLI) WWW, TELNET, SSH, FTP, Console ZyWALL USG 50 User's Guide 583 You can also set up rules that...
User Manual
Page 584
... User account in the remote server. 2 User account (Ext-User) in the ZyWALL. 3 Default user account for AD users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-users) in the ZyWALL. 584 ZyWALL USG 50 User's Guide For the rest of the authentication method setting. (See Chapter 39...on page 583) from the external server. Chapter 35 User/Group Table 170 Types of User Accounts (continued) TYPE ABILITIES LOGIN METHOD(S) limited-admin Look at ZyWALL configuration (web, CLI) WWW, TELNET, SSH, Console Access Users user Perform basic diagnostics (CLI) Access network services WWW,...
... User account in the remote server. 2 User account (Ext-User) in the ZyWALL. 3 Default user account for AD users (ad-users), LDAP users (ldap-users) or RADIUS users (radius-users) in the ZyWALL. 584 ZyWALL USG 50 User's Guide For the rest of the authentication method setting. (See Chapter 39...on page 583) from the external server. Chapter 35 User/Group Table 170 Types of User Accounts (continued) TYPE ABILITIES LOGIN METHOD(S) limited-admin Look at ZyWALL configuration (web, CLI) WWW, TELNET, SSH, Console Access Users user Perform basic diagnostics (CLI) Access network services WWW,...
User Manual
Page 585
... Section 35.4.2 on the group membership attribute. Note: You cannot put the default admin account into the ZyWALL to use the network services it provides. User Awareness By default, users do not have to log into any user group. ZyWALL USG 50 User's Guide 585 Finding Out More • See Section 6.6.1 on page 106...a RADIUS server to authenticate user accounts based on groups. See Section 39.2.1 on page 621 for more on page 596 for a user-aware login example. Chapter 35 User/Group See Setting up User Attributes in an External Server on page 597 for a list of attributes and how to set...
... Section 35.4.2 on the group membership attribute. Note: You cannot put the default admin account into the ZyWALL to use the network services it provides. User Awareness By default, users do not have to log into any user group. ZyWALL USG 50 User's Guide 585 Finding Out More • See Section 6.6.1 on page 106...a RADIUS server to authenticate user accounts based on groups. See Section 39.2.1 on page 621 for more on page 596 for a user-aware login example. Chapter 35 User/Group See Setting up User Attributes in an External Server on page 597 for a list of attributes and how to set...
User Manual
Page 591
... group. Click OK to save your changes back to be members of this screen without saving your changes. 35.4 Setting Screen The Setting screen controls default settings, login settings, lockout settings, and other user settings for them . Chapter 35 User/Group Table 174 Configuration > User/Group > Group > Add (continued) LABEL DESCRIPTION Member... the Available list. You can double-click a single entry to the Member list. Click Cancel to exit this group and move them to move them . ZyWALL USG 50 User's Guide 591 The order of the users and user groups that you do not want to the...
... group. Click OK to save your changes back to be members of this screen without saving your changes. 35.4 Setting Screen The Setting screen controls default settings, login settings, lockout settings, and other user settings for them . Chapter 35 User/Group Table 174 Configuration > User/Group > Group > Add (continued) LABEL DESCRIPTION Member... the Available list. You can double-click a single entry to the Member list. Click Cancel to exit this group and move them to move them . ZyWALL USG 50 User's Guide 591 The order of the users and user groups that you do not want to the...
User Manual
Page 592
...describes the labels in this screen, login to the Web Configurator, and click Configuration > Object > User/Group > Setting. You can modify the entry's settings. # This field is a sequential value, and it is not associated with a specific entry. 592 ZyWALL USG 50 User's Guide Chapter 35 User/...Group To access this screen. Edit Double-click an entry or select it and click Edit to use the default settings. They also control the settings for any user account's authentication...
...describes the labels in this screen, login to the Web Configurator, and click Configuration > Object > User/Group > Setting. You can modify the entry's settings. # This field is a sequential value, and it is not associated with a specific entry. 592 ZyWALL USG 50 User's Guide Chapter 35 User/...Group To access this screen. Edit Double-click an entry or select it and click Edit to use the default settings. They also control the settings for any user account's authentication...
User Manual
Page 594
... logons for administration account Select this check box if you want to set a limit on the number of simultaneous logins by non-admin users. These default authentication timeout settings also control the settings for a specified amount of minutes the user must be between 1 and 65...Type the maximum number of times each user can login as many times as they want as long as they use the default settings. Maximum number per This field is locked out for any user account's authentication timeout settings. 594 ZyWALL USG 50 User's Guide Type the number of time.
... logons for administration account Select this check box if you want to set a limit on the number of simultaneous logins by non-admin users. These default authentication timeout settings also control the settings for a specified amount of minutes the user must be between 1 and 65...Type the maximum number of times each user can login as many times as they want as long as they use the default settings. Maximum number per This field is locked out for any user account's authentication timeout settings. 594 ZyWALL USG 50 User's Guide Type the number of time.
User Manual
Page 596
...that remains before the ZyWALL automatically logs the access user out, regardless of the lease time. 596 ZyWALL USG 50 User's Guide Remaining time before it . Remaining time before the ZyWALL automatically logs them out. The ZyWALL sets this amount ...This box appears if you checked the Allow renewing lease time automatically box in this screen. The default value is the lease time that remains, though the user might be able to reset the lease ... (max ... Chapter 35 User/Group 35.4.2 User Aware Login Example Access users cannot use the Web Configurator to reset the lease time.
...that remains before the ZyWALL automatically logs the access user out, regardless of the lease time. 596 ZyWALL USG 50 User's Guide Remaining time before it . Remaining time before the ZyWALL automatically logs them out. The ZyWALL sets this amount ...This box appears if you checked the Allow renewing lease time automatically box in this screen. The default value is the lease time that remains, though the user might be able to reset the lease ... (max ... Chapter 35 User/Group 35.4.2 User Aware Login Example Access users cannot use the Web Configurator to reset the lease time.
User Manual
Page 619
... lists the types of users from a central location. Normally, the directory structure reflects the geographical or ZyWALL USG 50 User's Guide 619 You create and store user profile and login information on page 623) to configure the default external RADIUS server to use the local user database to authenticate VPN users. • Directory Service (LDAP...
... lists the types of users from a central location. Normally, the directory structure reflects the geographical or ZyWALL USG 50 User's Guide 619 You create and store user profile and login information on page 623) to configure the default external RADIUS server to use the local user database to authenticate VPN users. • Directory Service (LDAP...
User Manual
Page 650
... TCP that you have this read -only fields display detailed information about the certificate. 650 ZyWALL USG 50 User's Guide Certification Path Click the Refresh button to have the ZyWALL check incoming certificates that validate the end entity's certificate. Enable X.509v3 CRL Distribution Points and... Select this screen. Type the login name (up to authenticate itself in this check box if the directory server uses LDAP (Lightweight Directory Access Protocol). LDAP is the default server port number for LDAP. ID The ZyWALL may need to authenticate itself in...
... TCP that you have this read -only fields display detailed information about the certificate. 650 ZyWALL USG 50 User's Guide Certification Path Click the Refresh button to have the ZyWALL check incoming certificates that validate the end entity's certificate. Enable X.509v3 CRL Distribution Points and... Select this screen. Type the login name (up to authenticate itself in this check box if the directory server uses LDAP (Lightweight Directory Access Protocol). LDAP is the default server port number for LDAP. ID The ZyWALL may need to authenticate itself in...
User Manual
Page 698
...color should display in the rest of this screen. Table 220 Configuration > System > WWW > Login Page LABEL DESCRIPTION Select Type Select whether the Web Configurator uses the default login screen or one that represents the desired color. Title Enter the title for black. Background Set how...use a color, select Color and specify the color. Spaces are allowed. To use "rgb(0,0,0)" for the top of the screen's text. 698 ZyWALL USG 50 User's Guide The following table describes the labels in another color. Note: Use a GIF, JPG, or PNG of the screen's text. ...
...color should display in the rest of this screen. Table 220 Configuration > System > WWW > Login Page LABEL DESCRIPTION Select Type Select whether the Web Configurator uses the default login screen or one that represents the desired color. Title Enter the title for black. Background Set how...use a color, select Color and specify the color. Spaces are allowed. To use "rgb(0,0,0)" for the top of the screen's text. 698 ZyWALL USG 50 User's Guide The following table describes the labels in another color. Note: Use a GIF, JPG, or PNG of the screen's text. ...
User Manual
Page 699
... the default HTTPS port on the ZyWALL, then in Internet Explorer. Click View Certificate if you want to access the ZyWALL HTTPS ...ZyWALL. Figure 397 Security Alert Dialog Box (Internet Explorer) ZyWALL USG 50 User's Guide 699 Spaces are allowed. Note: Use a GIF, JPG, or PNG of the ZyWALL... you wish to access. 45.6.7.1 Internet Explorer Warning Messages When you attempt to verify that the certificate is blocked. if you trust the server certificate. Window Background Set how the window's background looks. Chapter 45 System Table 220 Configuration > System > WWW > Login...
... the default HTTPS port on the ZyWALL, then in Internet Explorer. Click View Certificate if you want to access the ZyWALL HTTPS ...ZyWALL. Figure 397 Security Alert Dialog Box (Internet Explorer) ZyWALL USG 50 User's Guide 699 Spaces are allowed. Note: Use a GIF, JPG, or PNG of the ZyWALL... you wish to access. 45.6.7.1 Internet Explorer Warning Messages When you attempt to verify that the certificate is blocked. if you trust the server certificate. Window Background Set how the window's background looks. Chapter 45 System Table 220 Configuration > System > WWW > Login...
User Manual
Page 775
... device specifications. Table 240 Default Login Information ATTRIBUTE SPECIFICATION Default IP Address (P3, P4) 192.168.1.1 Default Subnet Mask 255.255.255.0 (24 bits) (P3, P4) Default Password 1234 This table provides... hardware specifications. Table 241 Hardware Specifications FEATURE SPECIFICATION Ethernet Interfaces Number of key features. CHAPTER 52 Product Specifications The following specifications are subject to 95% (non-condensing) Mean Time Between Failures: 323,823 hours 242 (W) x 175 (D) x 35.5 (H) mm 1.2 kg ZyWALL USG 50...
... device specifications. Table 240 Default Login Information ATTRIBUTE SPECIFICATION Default IP Address (P3, P4) 192.168.1.1 Default Subnet Mask 255.255.255.0 (24 bits) (P3, P4) Default Password 1234 This table provides... hardware specifications. Table 241 Hardware Specifications FEATURE SPECIFICATION Ethernet Interfaces Number of key features. CHAPTER 52 Product Specifications The following specifications are subject to 95% (non-condensing) Mean Time Between Failures: 323,823 hours 242 (W) x 175 (D) x 35.5 (H) mm 1.2 kg ZyWALL USG 50...