Manualshelf

Internet Security Appliance User's Guide

ManualsBrandsZyXEL Communications ManualsNetwork Router5 Series
421422423424425426427428429430
ZyWALL 5/35/70 Series User’s Guide
427
CHAPTER 21
Authentication Server Screens
21.1 Overview
This chapter discusses how to configure the ZyWALL’s authentication server feature.
A ZyWALL set to be a VPN extended authentication server can use either the local user
database internal to the ZyWALL or an external RADIUS server for an unlimited number of
users. The ZyWALL uses the same local user database for VPN extended authentication and
wireless LAN security.
21.1.1 What You Can Do in the Authentication Server Screens
Use the Local User Database Screen (Section 21.2 on page 428) to configure your
ZyWALLs list of local user profiles.
Use the RADIUS Screen (Section 21.3 on page 430) to configure external RADIUS
server settings.
21.1.2 What You Need To Know About Authentication Server
Local User Database
By storing user profiles locally on the ZyWALL, your ZyWALL is able to authenticate users
without interacting with a network RADIUS server. However, there is a limit on the number of
users you may authenticate in this way.
RADIUS
The ZyWALL can use an external RADIUS server to authenticate an unlimited number of
users. RADIUS is based on a client-server model that supports authentication and accounting,
where access point is the client and the server is the RADIUS server.
Authentication
Determines the identity of the users.
Accounting
Keeps track of the client’s network activity.
RADIUS user is a simple package exchange in which your ZyWALL acts as a message relay
between the wireless station and the network RADIUS server.
Finding Out More
Refer to Section 12.4 on page 244 for more information about RADIUS.