3.59. UserAuthRule
Description
The User Authentication Ruleset specifies from where users are allowed to authenticate to the sys-
tem, and how.
Properties
Index
The index of the object, starting at 1. (Identifier)
Name
Specifies a symbolic name for the rule. (Optional)
Agent
HTTP, HTTPS, XAUTH, PPP or EAP. (Default: HTTP)
ChallengeExpire
How long, in seconds, before RADIUS challenge expires.
(Default: 160)
AuthSource
Disallow, LDAP, RADIUS or Local.
Interface
The interface on which the connection was received.
OriginatorIP
The network object that the incoming IP address must be a
part of.
TerminatorIP
Specifies the destination IP configured on the PPTP/L2TP
server configuration. Only used when agent is PPP.
RadiusServers
Specifies the authentication servers that will be used to au-
thenticate users matching this rule.
LDAPServers
Specifies the authentication servers that will be used to au-
thenticate users matching this rule.
RadiusMethod
Specifies the authentication method used for encrypting the
user password. (Default: PAP)
LocalUserDB
Specifies the local user database that will be used to authen-
ticate users matching this rule.
LoginType
HTML form or Basic authentication. (Default: HTMLForm)
HTTPBanners
HTTP Authentication HTML Banners. (Default: Default)
RealmString
The string that is presented as a part of the 401 - Authentica-
tion Required message.
HostCertificate
Specifies the host certificate that the security gateway sends
to the client. Only RSA certificates are supported.
RootCertificate
Specifies the root certificate that was used to sign the host
certificate. Only RSA certificates are supported. (Optional)
PPPAuthNoAuth
Allow no authentication. (Default: No)
PPPAuthPAP
Use PAP authentication protocol. User name and password
are sent in plaintext. (Default: Yes)
PPPAuthCHAP
Use CHAP authentication protocol. (Default: Yes)
3.59. UserAuthRule
Chapter 3. Configuration Reference
208