R3721-F3210-F3171-HP High-End Firewalls VPN Configuration Guide-6PW101
362
NOTE:
For successful LDAP authentication of a user, you must also confi
g
ure the account information and the user
group attribute information for the user on the LDAP server, and make sure that the user
g
roups confi
g
ured
on the authentication server exist on the SSL VPN gateway. Otherwise, the user cannot log in.
Select VPN > SSL VPN > Domain Management > Authentication Policy from the navigation tree and click
the LDAP Authentication tab. The LDAP authentication configuration page appears, as shown in Figure
25
3.
Figure 253 LDAP authentication
Table 54 Configuration items
Item Descri
p
tion
Enable LDAP
authentication
Select this item to enable LDAP authentication.
LDAP Sever IP Specify the IP address of the LDAP server.
Server Port Specify the TCP port number used by the LDAP server.
Version Specify the supported LDAP protocol version.
Authentication Policy
Select an authentication policy for LDAP authentication. Options include Password,
Password+Certificate, and Certificate.
User Group Attribute Specify the name of the user group attribute configured on the LDAP server.
Specify conditions to
query user DN
Select this option to query user DN by specified conditions, including the administrator
DN, password, search base DN, and search template.
Admin DN
Enter a user DN that has the administrator rights, which include the right to view the
login user information.
Password
Enter a user password that has the administrator right and enter the password again to
confirm the password.
Confirm Password
Search Base DN Specify a search base DN.