ZyXEL Communications ZyWALL USG-Series - Aaa Authentication Command Example; Test Aaa Command; Test a User Account Command Example

ZyXEL Communications ZyWALL USG-Series

426 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter 45 Authentication Objects

ZyWALL / USG (ZLD) CLI Reference Guide

298

45.2.1 aaa authentication Command Example

The following example creates an authentication profile to authentication users using the LDAP

server group and then the local user database.

45.3 test aaa Command

The following table lists the test aaa command you use to teat a user account on an

authentication server.

45.3.1 Test a User Account Command Example

The following example shows how to test whether a user account named userABC exists on the AD

authentication server which uses the following settings:

• IP address: 172.16.50.1

•Port: 389

• Base-dn: DC=ZyXEL,DC=com

• Bind-dn: zyxel\engineerABC

aaa authentication profile-name

member1 [member2] [member3]

[member4]

Sets the profile to use the authentication method(s) in the order specified.

member = group ad, group ldap, group radius, or local.

Note: You must specify at least one member for each profile. Each type of member

can only be used once in a profile.

aaa authentication [no] match-

default-group

Enable this to treat a user successfully authenticated by a remote auth server as a

defat-ext-user. If the remote authentication server is LDAP, the default-ext-user

account is an ldap-user. If the remote authentication server is AD, the default-ext-

user account is an ad-user. If the remote authentication server is RADIUS, the

default-ext-user account is a radius-user.

Table 180 aaa authentication Commands (continued)

COMMAND DESCRIPTION

Router# configure terminal

Router(config)# aaa authentication LDAPuser group ldap local

Router(config)# show aaa authentication LDAPuser

No. Method

===========================================================================

0 ldap

1 local

Router(config)#

Table 181 test aaa Command

COMMAND DESCRIPTION

test aaa {server|secure-server} {ad|ldap} host

{hostname|ipv4-address} [host {hostname|ipv4-

address}] port <1..65535> base-dn base-dn-string

[bind-dn bind-dn-string password password] login-

name-attribute attribute [alternative-login-name-

attribute attribute] account account-name

Tests whether a user account exists on the specified

authentication server.

Table of Contents

Other manuals for ZyXEL Communications ZyWALL USG-Series

User Guide150 pages

Quick Start Guide8 pages

Application Notes187 pages

Related product manuals

Preview: ZyXEL Communications ZyWall

ZyXEL Communications ZyWall

Preview: ZyXEL Communications ZYWALL 5

ZyXEL Communications ZYWALL 5

Preview: ZyXEL Communications ZYWALL 35

ZyXEL Communications ZYWALL 35

ZyXEL Communications ZyWALL 310

Preview: ZyXEL Communications ZyWall 110

ZyXEL Communications ZyWall 110

Preview: ZyXEL Communications ZyWALL 1100

ZyXEL Communications ZyWALL 1100

Preview: ZyWALL 2 Plus

Preview: ZyWall ATP series

ZyWall ATP series

Preview: ZYWALL USG 20

Preview: ZYWALL USG CLI

Preview: ZyWALL USG 100 Series

ZyWALL USG 100 Series