SonicWALL TZ 190 Manuale Utente
User Management
600
SonicOS Enhanced 4.0 Administrator Guide
encrypted connection. The SonicWALL authenticates all users as soon as they attempt to
access network resources in a different zone (such as WAN, VPN, WLAN, etc), which causes
the network traffic to pass through the SonicWALL. Users who log into a computer on the LAN,
but perform only local tasks are not authenticated by the SonicWALL.User level authentication
can be performed using a local user database, LDAP, RADIUS, or a combination of a local
database with either LDAP or RADIUS. SonicOS also provides Single Sign-On (SSO)
capability. SSO can be used in conjunction with LDAP. The local database on the SonicWALL
can support up to 1000 users. If you have more than 1000 users, you must use LDAP or
RADIUS for authentication.
access network resources in a different zone (such as WAN, VPN, WLAN, etc), which causes
the network traffic to pass through the SonicWALL. Users who log into a computer on the LAN,
but perform only local tasks are not authenticated by the SonicWALL.User level authentication
can be performed using a local user database, LDAP, RADIUS, or a combination of a local
database with either LDAP or RADIUS. SonicOS also provides Single Sign-On (SSO)
capability. SSO can be used in conjunction with LDAP. The local database on the SonicWALL
can support up to 1000 users. If you have more than 1000 users, you must use LDAP or
RADIUS for authentication.
Figure 52:1 User Management Flow Diagram
Using Local Users and Groups for Authentication
The SonicWALL security appliance provides a local database for storing user and group
information. You can configure the SonicWALL to use this local database to authenticate users
and control their access to the network. The local database is a good choice over LDAP or
RADIUS for this purpose when the number of users accessing the network is relatively small.
Creating entries for dozens of users and groups takes time, although once the entries are in
place they are not difficult to maintain. For networks with larger numbers of users, user
authentication using LDAP or RADIUS servers can be more efficient.
information. You can configure the SonicWALL to use this local database to authenticate users
and control their access to the network. The local database is a good choice over LDAP or
RADIUS for this purpose when the number of users accessing the network is relatively small.
Creating entries for dozens of users and groups takes time, although once the entries are in
place they are not difficult to maintain. For networks with larger numbers of users, user
authentication using LDAP or RADIUS servers can be more efficient.
#ONFIGURE
#ONFIGURE
#ONFIGURE
#ONFIGURE
#ONFIGURE
#ONFIGURE
,OCAL
5SER
!DMINISTRATOR