Authentication Objects
Authentication Objects Overview
After you have created the AAA server objects in the AAA Server screens, you can specify the authentication objects (containing the AAA server information) that the ZyWALL uses to authenticate users (using VPN or managing through HTTP/HTTPS).
Specify the authentication server(s) and/or server group(s) in the Auth. Method screen to create an authentication object.
Creating an Authentication Object
Follow the steps below to create an authentication object.
- Click Object > Auth. Method.
- Click Add.
- Specify a descriptive name for identification purposes in the Name field. You may use 1-31 alphanumeric characters, underscores(_), or dashes (-), but the first character cannot be a number. This value is case-sensitive. For example, "My_Device".
- Click Add to insert an authentication method in the table.
- Select a server object from the Method List drop-down list box.
- You can add up to three server objects to the table. The ordering of the Method List column in important. The ZyWALL authenticates the users using the databases (in the local user database or the external authentication server) in the order they appear in this screen.
If two accounts with the same username exist on two authentication servers you specify, the ZyWALL does not continue the search on the second authentication server when you enter the username and password that doesn't match the one on the first authentication server.
Note: You can NOT select two server objects of the same type.
Object > Auth. Method > Add
label description Name Specify a descriptive name for identification purposes.You may use 1-31 alphanumeric characters, underscores(_), or dashes (-), but the first character cannot be a number. This value is case-sensitive. For example, "My_Device". Method List Select a server object from the drop-down list box. You can create a server object in in the Auth. Method screen (see AAA Server for more information).The ZyWALL authenticates the users using the databases (in the local user database or the external authentication server) in the order they appear in this screen.If two accounts with the same username exist on two authentication servers you specify, the ZyWALL does not continue the search on the second authentication server when you enter the username and password that doesn't match the one on the first authentication server. Add icon Click Add to add a new entry.Click Edit to edit the settings of an entry.Click Delete to delete an entry. OK Click OK to save the changes. Cancel Click Cancel to discard the changes.