ZyXEL Communications 5 Series User Manual

ZyWALL 5/35/70 Series User’s Guide

This chapter discusses how to configure the ZyWALL’s authentication server feature.

A ZyWALL set to be a VPN extended authentication server can use either the local user 
database internal to the ZyWALL or an external RADIUS server for an unlimited number of 
users. The ZyWALL uses the same local user database for VPN extended authentication and 
wireless LAN security.

• Use the Local User Database Screen (

) to configure your 

ZyWALL’s list of local user profiles.

• Use the RADIUS Screen (

) to configure external RADIUS 

server settings.

By storing user profiles locally on the ZyWALL, your ZyWALL is able to authenticate users 
without interacting with a network RADIUS server. However, there is a limit on the number of 
users you may authenticate in this way.

The ZyWALL can use an external RADIUS server to authenticate an unlimited number of 
users. RADIUS is based on a client-server model that supports authentication and accounting, 
where access point is the client and the server is the RADIUS server.

• Authentication 

Determines the identity of the users.

• Accounting

Keeps track of the client’s network activity. 

RADIUS user is a simple package exchange in which your ZyWALL acts as a message relay 
between the wireless station and the network RADIUS server.