Create User elements
The User element defines who your users are and how they can identify themselves to get access to networks and services as defined in your Firewall Access rules.
You create Users as members of a User Group. You do not have to specify all user parameters separately for each individual User. A User that is a member of a User Group can inherit, for example, the Authentication Method and account expiration time from the User Group. Each User Group must belong to an LDAP Domain. We recommend creating a separate user account used for each user. Each user can belong to several User Groups within the LDAP Domain. User-specific properties can override properties defined at the User Group level.
You can import and export Users and User Groups through an LDIF file to or from some other Management Server.
For more details about the product and how to configure features, click Help or press F1.
Steps
Result
Internal User Properties dialog box
Use this dialog box to define internal user properties.
Option | Definition |
---|---|
General tab | |
Name | Specifies the user name in the directory. |
Comment | An optional comment for your own reference. |
DN | Inherited from the LDAP Domain to which the user belongs. |
Always Active | Specifies that the user account is considered active immediately and is never automatically disabled. |
Activation Date | Specifies the date when the user account becomes active. |
Inherit Expiration Period | The expiration period is inherited from the User Group to which the User belongs. |
Expiration After | Specifies the number of days after which the user account is automatically disabled. |
Expiration Date | Specifies the date when the user account is automatically disabled. |
Member of | Shows the Domains to which the user belongs. |
Option | Definition |
---|---|
Authentication tab | |
Authentication Methods | Shows the authentication methods that have been selected for the user. |
Add | Opens the Select Element dialog box. |
Remove | Removes the element from the Authentication Methods list. |
Client Certificate Properties
(Client Certificate method only) |
|
Alternative Subject Name or CN | For example, alice.smith@example.com or 192.168.254.200.
The value you enter must match the value entered in the corresponding field of the certificate request. |
Password Properties
(User password method only) |
|
Password | Specifies the user password. |
Confirm Password | Confirms that user password. |
Pre-Shared Key Properties
(Pre-Shared Key method only) |
|
Pre-Shared Key | Specifies the pre-shared key. |
Confirm Pre-Shared Key | Confirms the pre-shared key. |