Fortinet FortiGate 4000 Betriebsanweisung
194
01-28006-0012-20041105
Fortinet Inc.
Policy
Firewall
Advanced policy options
Figure 82: Advanced policy options
Authentication
You must add users and a firewall protection profile to a user group before you can
select Authentication. For information about adding and configuring user groups, see
select Authentication. For information about adding and configuring user groups, see
.
Select Authentication and select one or more user groups to require users to enter a
user name and password before the firewall accepts the connection.
user name and password before the firewall accepts the connection.
Figure 83: Selecting user groups for authentication
You can select Authentication for any service. Users can authenticate with the firewall
using HTTP, Telnet, or FTP. For users to be able to authenticate you must add an
HTTP, Telnet, or FTP policy that is configured for authentication. When users attempt
to connect through the firewall using this policy they are prompted to enter a firewall
username and password.
using HTTP, Telnet, or FTP. For users to be able to authenticate you must add an
HTTP, Telnet, or FTP policy that is configured for authentication. When users attempt
to connect through the firewall using this policy they are prompted to enter a firewall
username and password.
If you want users to authenticate to use other services (for example POP3 or IMAP)
you can create a service group that includes the services for which you want to
require authentication, as well as HTTP, Telnet, and FTP. Then users could
authenticate with the policy using HTTP, Telnet, or FTP before using the other
service.
you can create a service group that includes the services for which you want to
require authentication, as well as HTTP, Telnet, and FTP. Then users could
authenticate with the policy using HTTP, Telnet, or FTP before using the other
service.