ZyXEL Communications USG 2000 User Manual
Chapter 44 AAA Server
ZyWALL USG 2000 User’s Guide
732
Timeout
Specify the timeout period (between 1 and 300 seconds) before the
ZyWALL disconnects from the RADIUS server. In this case, user
authentication fails.
ZyWALL disconnects from the RADIUS server. In this case, user
authentication fails.
Search timeout occurs when either the user information is not in the
RADIUS server or the RADIUS server is down.
RADIUS server or the RADIUS server is down.
Key
Enter a password (up to 15 alphanumeric characters) as the key to be
shared between the external authentication server and the ZyWALL.
shared between the external authentication server and the ZyWALL.
The key is not sent over the network. This key must be the same on the
external authentication server and the ZyWALL.
external authentication server and the ZyWALL.
Group
Membership
Attribute
Membership
Attribute
A RADIUS server defines attributes for its accounts. Select the name and
number of the attribute that the ZyWALL is to check to determine to
which group a user belongs. If it does not display, select user-defined
and specify the attribute’s number.
number of the attribute that the ZyWALL is to check to determine to
which group a user belongs. If it does not display, select user-defined
and specify the attribute’s number.
This attribute’s value is called a group identifier; it determines to which
group a user belongs. You can add ext-group-user user objects to
identify groups based on these group identifier values.
group a user belongs. You can add ext-group-user user objects to
identify groups based on these group identifier values.
For example you could have an attribute named “memberOf” with values
like “sales”, “RD”, and “management”. Then you could also create a ext-
group-user user object for each group. One with “sales” as the group
identifier, another for “RD” and a third for “management”.
like “sales”, “RD”, and “management”. Then you could also create a ext-
group-user user object for each group. One with “sales” as the group
identifier, another for “RD” and a third for “management”.
OK
Click OK to save the changes.
Cancel Click
Cancel to discard the changes.
Table 206 Configuration > Object > AAA Server > RADIUS > Add (continued)
LABEL
DESCRIPTION