Cisco Cisco Email Security Appliance X1050 Guía Del Usuario
Chapter 8 Common Administrative Tasks
Adding Users
8-332
Cisco IronPort AsyncOS 7.1 for Email Daily Management Guide
OL-22160-02
Step 1
On the System Administration > Users page, click Enable. The Edit External
Authentication page is displayed.
Authentication page is displayed.
Step 2
Select the Enable External Authentication check box.
Step 3
Select LDAP for the authentication type.
Figure 8-13
Enabling External Authentication Using LDAP
Step 4
Enter the amount of time to store external authentication credentials in the web
user interface.
user interface.
Step 5
Select the LDAP external authentication query that authenticates users.
Step 6
Enter the number of seconds that the appliance waits for a response from the
server before timing out.
server before timing out.
Step 7
Enter the name of a group from the LDAP directory that you want the appliance
to authenticate, and select the role for the users in the group.
to authenticate, and select the role for the users in the group.
Step 8
Optionally, click Add Row to add another directory group. Repeat steps
and
for each directory group that the appliance authenticates.
Step 9
Submit and commit your changes.
Enabling RADIUS Authentication
You can also use a RADIUS directory to authenticate users and assign groups of
users to IronPort roles. The RADIUS server should support the CLASS attribute,
which AsyncOS uses to assign users in the RADIUS directory to IronPort user
roles. AsyncOS supports two authentication protocols for communicating with
the RADIUS server: Password Authentication Protocol (PAP) and Challenge
Handshake Authentication Protocol (CHAP).
users to IronPort roles. The RADIUS server should support the CLASS attribute,
which AsyncOS uses to assign users in the RADIUS directory to IronPort user
roles. AsyncOS supports two authentication protocols for communicating with
the RADIUS server: Password Authentication Protocol (PAP) and Challenge
Handshake Authentication Protocol (CHAP).