3.127. UserAuthRule
Description
The User Authentication Ruleset specifies from where users are allowed to authenticate to the
system, and how.
Properties
Index The index of the object, starting at 1. (Identifier)
Name Specifies a symbolic name for the rule.
Agent ARPCache, HTTP, HTTPS, XAuth, PPP or EAP.
(Default: HTTP)
ChallengeExpire How long, in seconds, before RADIUS challenge
expires. (Default: 160)
AuthSource Disallow, LDAP, RADIUS or Local.
Interface The interface on which the connection was
received.
OriginatorIP The network object that the incoming IP address
must be a part of.
TerminatorIP Specifies the destination IP configured on the
PPTP/L2TP server configuration. Only used when
agent is PPP or SSL. With SSL, this is the IP address
of the listening interface.
RadiusServers Specifies the authentication servers that will be
used to authenticate users matching this rule.
PrimaryRetryInterval How many seconds to wait before trying to use the
primary server again if it has failed. (Default: 0)
ResendingSTART If the RADIUS servers fail to respond system will
retry to send a START message every Interim
seconds. (Default: No)
LDAPServers Specifies the authentication servers that will be
used to authenticate users matching this rule.
RadiusMethod Specifies the authentication method used for
encrypting the user password. (Default: PAP)
LocalUserDB Specifies the local user database that will be used
to authenticate users matching this rule.
LoginType HTML form or Basic authentication. (Default:
HTMLForm)
MACAuthSecret Password used to authenticate MAC user, if empty
the MAC address will be sent as password.
(Optional)
MACAllowRouter Allow cliente connected through an Router.
(Default: No)
Chapter 3: Configuration Reference
310
To Next Page
Loading...
