Barracuda Networks SSL VPN Spécifications Page 31
- Page / 130
- Table des matières
- DEPANNAGE
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
31
The next tab, ‘Role Schema’ requires role information so the appliance can successfully link to the
correct role classes at run time.
• Role class: The LDAP class object used to represent a Role.
• Rolename attribute: The ‘rolename’ attribute from the Role class, if one exists.
• Role membership attribute: The ‘role membership’ attribute from the Role class, if one
exists.
• Role membership contains DN?: If the ‘role membership’ attribute value points to a
distinguished name then this box should be checked. The ‘role membership’ attribute can
contain a value or otherwise refer to another object in the directory.
The final tab, Options, allows an advanced user to fine tune LDAP operations.
• Connection timeout: Generic connection timeout for Active Directory sessions.
• Max Cache Objects: Amount of information retrieved from the AD to cache. If the AD is
large this should be set to a high value. Typically an object is cached for each user and one for
each group. Calculating how many groups and users you have is a good guide when setting
this. If the setting is too low some users may not be able to log in.
• Page Size: The number of objects returned in each paged request, the default should be
acceptable in most cases.
• User/ Group details Cache TTL: This is the minimum ‘Time to Live’ value which must be
greater than 10 seconds. Default value of 300 seconds stores Active Directory user
information in cache for 5 minutes before clearing the cache. The next required action fetches
user details again caching for another 300 seconds. A value too low will cause severe delays
in processing any action as the appliance will continually be re-fetching data from the domain
controller.
Configuring NIS User Database
There is one tab for the configuration of the UNIX user database:
• Hostname: The hostname of the UNIX server.
• Domain name: The UNIX domain name.
• Refresh interval: Remote account and groups are cached. This value is the interval (in
minutes) between updates.
• Include Local Accounts: If selected, local accounts are also include in the list of available
accounts. This only works on UNIX like system that have a /etc/passwd and or /etc/shadow
file.
• Include Local Groups: If selected, local groups are also include in the list of available
accounts. This only works on UNIX like system that have an /etc/group file.
- Version 1.0 1
- Copyright Notice 2
- Trademarks 2
- ACCESS CONTROL 3
- RESOURCE MANAGEMENT 4
- WEB FORWARDING 4
- NETWORK PLACES 5
- SYSTEM FUNCTIONS 5
- Chapter 1 6
- Overview 7
- Barracuda SSL VPN Models 8
- Chapter 2 9
- Getting Started 9
- Initial Setup 10
- Opening Firewall Ports 11
- Deployment Scenarios 15
- Non-DMZ! 15
- Within the DMZ 15
- Barracuda SSL VPN 16
- Statistic 19
- Description 19
- Viewing System Tasks 20
- Replacing a Failed System 21
- Purpose 23
- Switching Views 23
- Accessibility 24
- Checking Status 24
- Configuring User Databases 25
- Organizational Units (OUs) 28
- Organizational Unit Filter 28
- Troubleshooting 28
- Configuring LDAP 30
- Password Options 33
- Password Pattern 33
- Session Options 33
- Confidential Attributes 34
- Appearance 35
- SSL Certificates 36
- Creating a CA 37
- Importing a Certificate 38
- Attributes 41
- Web Forwards 42
- Types of Attributes 43
- Attribute Interface 43
- Actions Icons 43
- Creating Attributes 44
- Editing an Attribute 45
- Deleting an Attribute 45
- How to use Attributes 46
- Session Variable 46
- Access Control 48
- Introduction 48
- Levels of Trust 49
- Access Control Architecture 49
- What is a Resource? 50
- What is a Principal? 50
- What is a Policy? 50
- What is Permission? 50
- Creating Accounts 52
- Create New Account 53
- Assigning Groups 54
- Editing an Account 54
- Deleting an Account 54
- Creating Groups 55
- Groups Interface 56
- Action Icon 56
- Create New Group 56
- Editing a Group 56
- Delete Group 56
- Creating Policies 57
- Policy Interface 58
- Create Policy 58
- Editing a Policy 60
- Delete Policy 60
- Creating Access Rights 61
- Creating an Access Right 62
- Editing Access Rights 63
- Delete Access Rights 63
- Authentication Schemes 64
- Authentication Modules 67
- Password Authentication 67
- Creating a Password 67
- Modifying a Password 68
- Management Console 68
- User Console 69
- Configuring Passwords 69
- Configuring Answers 70
- Resource Management 72
- Executing a Resource 73
- The Barracuda SSL VPN Agent 74
- Web Forwarding! 76
- Technical Overview 77
- Tunnelled Web Forwards 77
- Reverse Proxy 78
- Web Forward Interface 78
- Creating a new Web Forward 79
- Authentication 80
- Editing a Web Forward 85
- Deleting a Web Forward 85
- Network Places 88
- Network Places Interface 89
- Creating a new Network Place 90
- File Management 93
- Editing a Network Place 94
- Deleting a Network Place 94
- Web Folders Windows Access 94
- Applications 101
- Publish a new Application 102
- General Tab 102
- Display Tab 103
- Mouse Tab 103
- Protocol Tab 103
- Advanced Tab 103
- Edit an Existing Application 104
- Removing an Application 104
- SSL Tunnels 105
- Edit an existing SSL Tunnel 108
- Removing an SSL Tunnel 108
- Profiles 110
- Action Icons 111
- Creating a new Profile 111
- Editing Profile Parameters 112
- Editing Session Details 113
- System Functions 116
- Auditing 116
- Creating a New Report 117
- Running One-Off Reports 119
- Appendix A 122
- Regular Expressions 122
- Examples 123
- Appendix B 124
- Limited Warranty and License 124
- Software License 125
- Appendix C 130
- Compliance 130
© 2020, manymanuals.fr. Tous droits réservés | 0.025 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels