Userauthrule – Amer Networks E5 CLI User Manual

3.128. UserAuthRule

Description

The User Authentication Ruleset specifies from where users are allowed to authenticate to the
system, and how.

Properties

Index

The index of the object, starting at 1. (Identifier)

Name

Specifies a symbolic name for the rule.

Agent

ARPCache, HTTP, HTTPS, XAuth, PPP. (Default:
HTTP)

ChallengeExpire

How long, in seconds, before RADIUS challenge
expires. (Default: 160)

AuthSource

Disallow, LDAP, RADIUS or Local.

Interface

The interface on which the connection was
received.

OriginatorIP

The network object that the incoming IP address
must be a part of.

TerminatorIP

Specifies the destination IP configured on the
PPTP/L2TP server configuration. Only used when
agent is PPP or SSL. With SSL, this is the IP address
of the listening interface.

RadiusServers

Specifies the authentication servers that will be
used to authenticate users matching this rule.

PrimaryRetryInterval

How many seconds to wait before trying to use the
primary server again if it has failed. (Default: 0)

ResendingSTART

If the RADIUS servers fail to respond system will
retry to send a START message every Interim
seconds. (Default: No)

LDAPServers

Specifies the authentication servers that will be
used to authenticate users matching this rule.

RadiusMethod

Specifies the authentication method used for
encrypting the user password. (Default: PAP)

LocalUserDB

Specifies the local user database that will be used
to authenticate users matching this rule.

LoginType

HTML form or Basic authentication. (Default:
HTMLForm)

MACAuthSecret

Password used to authenticate MAC user, if empty
the MAC address will be sent as password.
(Optional)

MACAllowRouter

Allow cliente connected through an Router.
(Default: No)

Chapter 3: Configuration Reference

278