Chapter 18 User/Group
NXC Series User’s Guide
240
For example, do the following to give a notebook access to a network printer.
1 Configure the external server to authenticate the notebook’s wireless client MAC address.
2 Click Configuration > Object > AP Profile > SSID > Security List > Add/Edit Security Profile and configure
an SSID security profile’s MAC authentication settings to have the AP use the external server to
authenticate wireless clients by MAC address (see Section 19.3.2.1 on page 271).
3 Click Configuration > Object > User/Group > User > Add and create a MAC address user account (see
Section 18.2.1 on page 241).
4 Click Configuration > Object > User/Group > MAC Address > Add and map the notebook’s MAC
address to the MAC address user account (also called a MAC role). See Section 18.5 on page 255.
User Groups
User groups may consist of user accounts or other user groups. Use user groups when you want to create
the same rule for several user accounts, instead of creating separate rules for each one.
Note: You cannot put access users and admin users in the same user group.
Note: You cannot put the default admin account into any user group.
User Awareness
By default, users do not have to log into the NXC to use the network services it provides. The NXC
automatically routes packets for everyone. If you want to restrict network services that certain users can
use via the NXC, you can require them to log in to the NXC first. The NXC is then ‘aware’ of the user who
is logged in and you can create ‘user-aware policies’ that define what services they can use.
User Role Priority
The NXC checks the following in order of priority.
1 User role setting in ext-user.
2 User role setting in ext-group-user.
3 User role setting in default user (ldap-users, ad-users, radius-users).
18.2 User Summary
The User screen provides a summary of all user accounts. To access this screen click Configuration >
Object > User/Group.
To Next Page
Loading...
