beautypg.com

H3C Technologies H3C SecBlade SSL VPN Cards User Manual

Page 59

background image

51

Table 14 Domain policy configuration items

Item Action

Enable security checking

Required
If you enable the security policy, the system will check the security status of a

user to determine which resources the user can use. The check items are
configured in the security policy management section.
If you do not enable the security policy, the system will not check the security
status of a user logging in.

NOTE:

If you enable the security policy but do not configure the check items, the system

will not check the security status of users logging in.

Enable authentication code
verification

Required
If you enable authentication code verification, the SSL VPN system will require

the administrators and users to input the authentication code on the login

page for verification.

Do not display the home page

Required
When you select this item, the SSL VPN system will close the home page after

the user logs in. The SSL VPN client runs normally.

Enable MAC binding

Required
If you enable MAC address binding, the MAC address of a user will be

delivered to the SSL VPN system when the user logs in to the SSL VPN system.

Enable auto login

Required
If you enable automatic login, after a user inputs the SSL VPN gateway

address in the address bar of the browser, the system will automatically log
the user in using account guest or using the account in the certificate.

Enable HTTP compress

Required
If you enable HTTP compression, the system will use the negotiated
compression method to implement compressed HTTP transfer when users

access Web proxy resources, improving the resource access efficiency.

Enable default user group
policy

Required
If you enable default user group policy, the system will add a created local
user that is not added to any user group to the Guests user group.

Refresh Interval

Required
Specify the interval at which the system automatically refreshes the online user
information and history information.

Certificate Field for
Authentication

Select either the Common-Name or Email-Address field. The field is used as
the username for certificate authentication.

Default Authentication Method

Required
Select an authentication method from the drop-down list to use it as the
default. A user using the default authentication method does not need to

specify the authentication method when entering the username. A user not

using the default authentication method needs to suffix “@authentication
method.domain name” after the username.

See also other documents in the category H3C Technologies Safety: