Manuale UtenteSommarioContents5Chapter 1: Introduction 15Chapter 2: Network Setup 587Chapter 3: NT Authentication Setup 1018Chapter 4: LDAP Authentication Setup 1258Chapter 5: Authentication Deployment 1629Chapter 6: Technical Support 20610Appendix A 20910Appendix B 21811Appendix C 21911Appendix D 22011Appendix E 22611Appendix F 23611Appendix G 24712Index 25512Chapter 1: Introduction13About this User Guide13How to Use this User Guide14Conventions14Terminology15Filtering Elements20Group Types20Global Group20IP Groups21NT Domain Groups22LDAP Domain Groups23Filtering Profile Types24Static Filtering Profiles25Master IP Group Filtering Profile25IP Sub-Group Filtering Profile25Individual IP Member Filtering Profile25Active Filtering Profiles26Global Filtering Profile26NT/LDAP Group Filtering Profile26NT/LDAP Member Filtering Profile26Override Account Profile27Time Profile27Lock Profile27Filtering Profile Components28Library Categories298e6 Supplied Categories29Custom Categories29Service Ports30Rules30Minimum Filtering Level30Filter Settings31Filtering Rules32Authentication Operations35R3000 Authentication Protocols35R3000 Authentication Tiers35Tier 1: Single Sign-On Authentication37Net use based authentication process37Re-authentication process38Authentication methods39SMB protocol39SMB Signing39LDAP protocol40Name resolution methods41Authentication setup procedures42Server setup types42Tier 1: Net use based authentication42Tier 2 and Tier 3: Web-based authentication42Configuring the authentication server43Login scripts44Enter net use syntax in the login script44View login script on the server console45Block page authentication login scripts46LDAP server setup rules47Tier 2: Time-based, Web Authentication48Tier 2 implementation in an environment49Tier 2 Script50Tier 1 and Tier 2 Script51Tier 3: Session-based, Web Authentication538e6 Authenticator54Environment requirements54Minimum system requirements54Recommended system requirements55Workstation requirements55Work flow in a Windows environment568e6 Authenticator configuration priority578e6 Authenticator configuration syntax58Sample command line parameters58Table of parameters59Novell eDirectory Agent62Environment requirements62Novell eDirectory servers62Client workstations63Novell clients63Novell eDirectory setup63R3000 setup and event logs64Authentication Solution Compatibility65Configuring the R3000 for Authentication66Configuration procedures66System section66Group section69Chapter 2: Network Setup70Environment Requirements70Workstation Requirements70Administrator70End User70Network Requirements71Set up the Network for Authentication72Specify the operation mode72Specify the subnet mask, IP address(es)74Invisible mode75Router or firewall mode75Enable authentication, specify criteria76Net use based authentication78Web-based authentication79Enter network settings for authentication82Create an SSL certificate84Create, Download a Self-Signed Certificate85Create, Upload a Third Party Certificate86Create a Third Party Certificate86Upload a Third Party Certificate88Download a Third Party Certificate89View log results90Specify block page settings93Block Page Authentication94Block page95User/Machine frame96Standard Links96Optional Links97Options page98Option 199Option 2100Option 3101Common Customization102Enable, Disable Features103Authentication Form Customization105Preview Sample Authentication Request Form107Block Page Customization109Preview Sample Block Page111Chapter 3: NT Authentication Setup113Join the NT Domain113Create an NT Domain115Add an NT domain115Refresh the NT branch116View or modify NT domain details117Domain Settings117Default Rule119Delete an NT domain120Set up NT Domain Groups, Members121Add NT groups, members to the tree121Specify a group’s filtering profile priority123Manually add a user’s name to the tree125Manually add a group’s name to the tree126Upload a file of filtering profiles to the tree127Create and Maintain NT Profiles130Add an NT group, member to the tree list130Add or maintain an entity’s profile132Category Profile133Redirect URL134Filter Options135Remove an entity’s profile from the tree136Chapter 4: LDAP Authentication Setup137Create an LDAP Domain137Add the LDAP domain137Refresh the LDAP branch138View, modify, enter LDAP domain details138LDAP Server Type139Group Objects140User Objects142Address Info143Account Info146SSL Settings147Alias List149Default Rule151Default Rule for Novell eDirectory153Configure a backup server153Modify a backup server’s configuration157Delete a backup server’s configuration157Delete a domain157Set up LDAP Domain Groups, Members158Add LDAP groups, users to the tree158Perform a basic search159Options for search results159Apply a filtering rule to a profile160Delete a rule161Specify a group’s filtering profile priority161Manually add a user’s name to the tree162Manually add a group’s name to the tree163Upload a file of filtering profiles to the tree164Create, Maintain LDAP Profiles167Add an LDAP group, member to the tree167Add or maintain an entity’s profile169Category Profile170Redirect URL171Filter Options172Remove an entity’s profile from the tree173Chapter 5: Authentication Deployment174Test Authentication Settings174Test Web-based authentication settings176Step 1: Create an IP Group, “test”176Step 2: Create a Sub-Group, “workstation”177Step 3: Set up “test” with a 32-bit net mask178Step 4: Give “workstation” a 32-bit net mask179Step 5: Block everything for the Sub-Group180Step 6: Use Authentication Request Page for redirect URL181Step 7: Disable filter options182Step 8: Attempt to access Web content183Test net use based authentication settings185Activate Authentication on the Network186Activate Web-based authentication for an IP Group187Step 1: Create a new IP Group, “webauth”187Step 2: Set “webauth” to cover users in range188Step 3: Create an IP Sub-Group189Step 4: Block everything for the Sub-Group191Step 5: Use Authentication Request Page for redirect URL192Step 6: Disable filter options193Step 7: Set Global Group to filter unknown traffic194Activate Web-based authentication for the Global Group199Step 1: Exclude filtering critical equipment199Step 1A: Block Web access, logging via Range to Detect200Range to Detect Settings200Range to Detect Setup Wizard202Step 1B: Block Web access via IP Sub-Group profile208Step 2: Modify the Global Group Profile211Activate NT authentication215Step 1: Modify the 3-try login script215Step 2: Modify the Global Group Profile216Chapter 6: Technical Support218Hours218Contact Information218Domestic (United States)218International218E-Mail218Office Locations and Phone Numbers2198e6 Corporate Headquarters (USA)2198e6 Taiwan2198e6 China219Support Procedures220Appendix A221User/Group File Format and Rules221Username Formats221Rule Criteria222File Format: Rules and Examples224NT User List Format and Rules225NT Group List Format and Rules226LDAP User List Format and Rules227LDAP Group List Format and Rules229Appendix B230Ports for Authentication System Access230Appendix C231LDAP Server Customizations231OpenLDAP Server Scenario231Not all users returned in User/Group Browser231Appendix D232Disable SMB Signing Requirements232SMB Signing Compatibility232Disable SMB Signing Requirements in Windows 2003233Appendix E238Obtain or Export an SSL Certificate238Export an Active Directory SSL Certificate238Verify certificate authority has been installed238Locate Certificates folder239Export the master certificate for the domain242Export a Novell SSL Certficate246Obtain a Sun ONE SSL Certificate247Appendix F248Override Pop-up Blockers248Yahoo! Toolbar Pop-up Blocker249If pop-up blocking is enabled249Add override account to the white list249Google Toolbar Pop-up Blocker251If pop-up blocking is enabled251Add override account to the white list251AdwareSafe Pop-up Blocker252If pop-up blocking is enabled252Temporarily disable pop-up blocking252Mozilla Firefox Pop-up Blocker253Add override account to the white list253Windows XP SP2 Pop-up Blocker254Set up pop-up blocking254Use the Internet Options dialog box254Use the IE toolbar255Temporarily disable pop-up blocking255Add override account to the white list256Use the IE toolbar256Use the Information Bar257Set up the Information Bar257Access your override account257Appendix G259Glossary259Index267Numerics267A267B268C268D269E269F269G270H270I270J271L271M272N272O273P274R274S275T276U276V276W277Dimensioni: 6,48 MBPagine: 277Language: EnglishApri il manuale
