beautypg.com

Ssl vpn > user management, User management, Chapter 4 – Cisco 4-Port SSL/IPSec VPN Router RVL200 User Manual

Page 49: Advanced configuration

background image

Chapter 4

Advanced Configuration

4

4-Port SSL/IPSec VPN Router

Generate New Certificate

Click this option to generate

a new certificate. It will replace the Router’s existing

certificate.

Export Certificate for Administration

The certificate for

administration holds the private key and should be stored

in a safe place as a backup. Select this option to store your

administration certificate as a file. The default filename is

RVL00_MMDD_HHMM.pem, which you can rename.

Follow the on-screen instructions to select the location

where you want to store your certificate. If you reset the

Router to its factory defaults, then you can import the

certificate and restore it on the Router.

Export Certificate for Client

Select this option to store

your client certificate as a file. The default filename is

RVL00_MMDD_HHMM_Client.pem, which you can

rename. Follow the on-screen instructions to select the

location where you want to store your certificate.

Import Certificate

Specify where your certificate

(X.509 certificate in a .pem file) is located. (This is the

file you previously saved using the Export Certificate for

Administration option.) Click Browse and follow the on-

screen instructions. After you have selected the file, click

Import.

Existing Certificate

The filename of the current certificate

is displayed.

SSL VPN > User Management

Define users for your SSL VPN tunnels.

SSL VPN > User Management

User Management

Edit Group

Authentication Type

Select the type you want to use: Local User Database,

RADIUS - PAP, RADIUS - CHAP, RADIUS - MSCHAP,

RADIUS - MSCHAPV, NT Domain, Active Directory,

or LDAP. Follow the instructions for the type you want to

use.
Local User Database
Proceed to the “Edit User” section.
RADIUS - PAP, RADIUS - CHAP, RADIUS - MSCHAP, or

RADIUS - MSCHAPV2

RADIUS - PAP

RADIUS Server Address

Enter the IP address or domain

name of the RADIUS server.

Secret Password

If required by the RADIUS server, enter

an authentication secret password.
Proceed to the “Edit User” section.
NT Domain

NT Domain

NT Server Address

Enter the IP address or domain name

of the server. (The Router does support Linux Samba

Server Authentication.)

NT Domain Name

Enter the NT authentication domain.

This is the domain name configured on the Windows

authentication server or Linux Samba authentication

server for network authentication.
Proceed to the “Edit User” section.
Active Directory

Active Directory

Server Address

Enter the IP address or domain name of

the Active Directory server.

Active Directory Domain

Enter the Active Directory

domain name.

See also other documents in the category Cisco Hardware: