Enable or disable user database replication on firewalls or Master NGFW Engines

You can enable or disable the replication of the Management Server’s internal LDAP database to a Firewall engine or a Master NGFW Engine.

The Management Server's internal LDAP database stores accounts for end users for authentication purposes. Firewall engines have a local replica of the Management Server’s internal LDAP database. By default, all changes are immediately replicated from the Management Server’s internal LDAP database to the local replicas on Firewall engines.

Master NGFW Engines have one combined local replica of the Management Server’s internal LDAP database for each Domain in which a Virtual NGFW Engine has users in the internal LDAP database. By default, changes are replicated from the Management Server’s database to the local replicas on the Master NGFW Engines. The information that is replicated to Master NGFW Engines depends on the User Authentication configuration of the Virtual NGFW Engines.

Note: Changing the replication of the Management Server’s internal LDAP database for a Master NGFW Engine also changes the replication of the Management Server’s internal LDAP database for all Virtual NGFW Engines hosted by the Master NGFW Engine.

  For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration.
  2. Right-click the NGFW Engine, then select Options.
  3. Select or deselect User DB Replication.