beautypg.com

Authentication policy configuration, Overview, Configuring the local authentication policy – H3C Technologies H3C SecBlade SSL VPN Cards User Manual

Page 64: Configuration procedure

background image

56

Authentication Policy Configuration

Overview

The H3C SecBlade SSL VPN system supports local authentication, RADIUS authentication, LDAP

authentication, AD authentication, and combination authentication. It supports using any two of the four
authentication methods for user authentication. In addition, you can also configure the certificate policy

for each authentication method except the RADIUS authentication.
The certificate policy can be password, password + certificate, or certificate:

Password authentication requires that a user input valid username and password to log in to the SSL
VPN system.

Password + certificate authentication requires that a user provide valid username and password, as
well as the valid certificate.

Certificate authentication requires that a user provide the valid certificate to log in. The username
carried in the certificate will be used as the account name automatically.

Thus, the system can cooperate with the user authentication database of the enterprise seamlessly. This

eliminates the burden to deploy users, which are in large quantities, on the SSL VPN system. This chapter

describes how to configure and manage the authentication methods.
Perform these tasks to perform authentication policy configurations.

Configuring the Local Authentication Policy

Configuring the RADIUS Authentication Policy

Configuring the LDAP Authentication Policy

Configuring the AD Authentication Policy

Configuring the Combination Authentication Policy

Configuring the Local Authentication Policy

Overview

The local authentication policy is used when the user information is stored on the SSL VPN device. Local

authentication does not require interaction with external servers, and therefore the authentication process
is faster. However, the number of local users is limited by the device’s capacity.

Configuration Procedure

Select Domain > Authentication Policy from the navigation tree to enter the local authentication policy

configuration page shown in

Figure 44

. Select a certificate policy from the dropdown list.

See also other documents in the category H3C Technologies Safety: