ZyXEL Communications 200 Series User Manual
Chapter 5 Configuration Basics
ZyWALL USG 100/200 Series User’s Guide
121
5.5 Objects
Objects store information and are referenced by other features. If you update this information
in response to changes, the ZyWALL automatically propagates the change through the
features that use the object.
in response to changes, the ZyWALL automatically propagates the change through the
features that use the object.
The following table introduces the objects. You can also use this table when you want to delete
an object because you have to delete references to the object first.
an object because you have to delete references to the object first.
5.5.1 User/Group
Use these screens to configure the ZyWALL’s administrator and user accounts. The ZyWALL
provides the following user types.
provides the following user types.
If you want to force users to log in to the ZyWALL before the ZyWALL routes traffic for
them, you might have to configure prerequisites first.
them, you might have to configure prerequisites first.
Table 29 Objects Overview
OBJECT
WHERE USED
user/group
for details on users and user groups.
address
VPN connections (local / remote network, NAT), policy routes (criteria, next-hop
[HOST], NAT), firewall, application patrol (source, destination), content filter,
virtual server (HOST), user settings (force user authentication), address groups,
remote management (System)
[HOST], NAT), firewall, application patrol (source, destination), content filter,
virtual server (HOST), user settings (force user authentication), address groups,
remote management (System)
address group
Policy routes (criteria), firewall, application patrol (source, destination), content
filter, user settings (force user authentication), address groups, remote
management (System)
filter, user settings (force user authentication), address groups, remote
management (System)
service, service
group
group
Policy routes (criteria, port triggering), firewall, service groups, log (criteria)
schedule
Policy routes (criteria), firewall, application patrol, content filter, user settings
(force user authentication)
(force user authentication)
AAA server
Authentication methods
authentication
methods
methods
VPN gateways (extended authentication), WWW (client authentication), L2TP
VPN, WLAN security (WPA-Enterprise and WPA2-Enterprise)
VPN, WLAN security (WPA-Enterprise and WPA2-Enterprise)
certificates
VPN gateways, WWW, SSH, FTP
SSL Application
SSL VPN
Table 30 User Types
TYPE
ABILITIES
Admin
Change ZyWALL configuration (web, CLI)
Limited-Admin
Look at ZyWALL configuration (web)
User
Access network services, browse user-mode commands (CLI)
Guest
Access network services
Ext-User
The same as a User or a Guest. The ZyWALL looks for the specific type in an
external authentication server. If the type is not available, the ZyWALL applies
default settings.
external authentication server. If the type is not available, the ZyWALL applies
default settings.
MENU ITEM(S)
Object > User/Group
PREREQUISITES
Addresses, address groups, schedules. The prerequisites are only used in
policies to force user authentication
policies to force user authentication