InHand VG710 InVehicle Gateway User Manual
67
simple authentication requirement, the database must be searched each time, along with synthesis and
filtering. This results in low efficiency. LDAP is equivalent to one table, and requires only the user
name and password, with some other parameters, which is quite simple. It can meet the authentication
requirement regarding the efficiency and structure.
Method for enabling the LDAP server for the gateway:
Click "Administration >> AAA >> LDAP". In "Server List", enter any name for "Name", enter the
server address (domain name/IP address) and port ID, and enter the base DN obtained from the server.
Set the user name and password for accessing the server. Select "None", "SSL", or "StartTLS" for
"Security". Click Add, and then click Apply & Save.
9.5.4 AAA Authentication
AAA authentication methods:
● No authentication (none): No validity check is performed. Generally, this method is not used.
● Local authentication (local): User information is configured on the NAS. Local authentication is
fast, which can reduce the operational costs, but the information storage amount is limited by
hardware.
● Remote authentication: User information is configured on the authentication server. Remote
authentication is supported over Radius, Tacacs+, and LDAP.
AAA authorization methods:
● No authorization (none): No authorization is performed for users.
● Local authorization (local): Authorization is performed based on the properties configured by the
NAS for the local account.
● Tacacs+ authorization: Users are authorized by the Tacacs+ server.
● Authorization after successful Radius authentication: Authorization is bound to authentication,
To Next Page
Loading...
