beautypg.com

Ssl vpn > virtual passage, Chapter 4, Advanced configuration – Cisco 4-Port SSL/IPSec VPN Router RVL200 User Manual

Page 50

background image

Chapter 4

Advanced Configuration

4

4-Port SSL/IPSec VPN Router

NOTE:

If your users are unable to connect via

Active Directory, verify the following:

The time settings between the Active

Directory server and the Router must be

synchronized. Kerberos authentication, used

by Active Directory to authenticate clients,

permits a maximum of a 15-minute time

difference between the Windows server and

client (the Router).
Make sure your Windows server is configured

for Active Directory authentication. If you

are using a Windows NT 4.0 server, then

your server only supports NT Domain

authentication. Windows 2000 and 2003

servers are also configured for NT Domain

authentication to support legacy Windows

clients.

1.

2.

Proceed to the “Edit User” section.
LDAP

LDAP

Server Address

Enter the IP address or domain name of

the server.

LDAP BaseDN*

Enter the search base for LDAP queries.

This is an example of a search base string: CN=Users,DC=

yourdomain,DC=com. (Do not use quotation marks in this

field.)
Proceed to the “Edit User” section.

Edit User

A list of users is displayed here.

User Name

This is the name of the user.

User Type

This is the type of user, User or Administrator.

Inactivity Timeout

This is the number of idle minutes

permitted before a session will time out.

Config

Click Edit to change the user’s settings on the

User Management screen.
To add a new user, click Add User. (The maximum number

of users is 128.) The User Management screen appears.

Add a User to the Local User Database

Configure the following settings:

User Name

Enter the name the user will use to log into

the SSL VPN Portal.

User Type

For users with Local User Database

authentication, select User or Administrator. User types

can only access the SSL VPN Portal, and Administrator

types can access the Router’s web-based utility.

Password

For users with Local User Database

authentication, enter the user’s password.

Confirm Password

For users with Local User Database

authentication, re-enter the user’s password.

Inactivity Timeout

Enter the number of idle minutes

permitted before the session times out and the login

screen appears. The default for User type is 0, which

disables the Inactivity Timeout feature. The default for

Administrator type is 0 minutes.
Click Save Settings to save your changes, or click Exit to

return to the User Management screen.
On the User Management screen, click Save Settings

to save your changes, or click Cancel Changes to undo

them.

SSL VPN > Virtual Passage

Define the IP address range for incoming Virtual Passage

clients and establish an SSL VPN tunnel by Virtual Passage.

Virtual Passage is a software application that enables

remote users to securely connect to a remote network, as

if they were on the local network.