For user and group authentication, you can either administer users locally on the NextGen X-Series Firewall or integrate the X-Series Firewall with an external authentication server. You can use the information from these authentication services when you configure VPNs, user-aware firewall rules, and the captive portal. You can also manage guest access to the network, using a confirmation page or a guest ticketing system.
Local Authentication
If no external authentication servers are available, you can administer users with the local authentication service. For instructions on how to set up local authentication, see How to Configure Local Authentication.
External Authentication Servers
The X-Series Firewall supports the following external authentication servers:
- Microsoft Active Directory
- Barracuda DC Agent
- NTLM
- MS-CHAPv2
- LDAP
- RADIUS
- OCSP
For instructions on how to integrate the X-Series Firewall with these servers, see How to Configure an External Authentication Service.
Guest Access
To grant guest users access to the network, you can use the following methods:
- Confirmation Page – Prompts guests to agree to Terms of Service before they can access the network. For more information, see How to Set Up a Guest Access Confirmation Page
- Guest Ticketing – Assigns guests with tickets that give them credentials to temporarily access the network. For more information, see How to Set Up Guest Access with Ticketing and How to Manage Guest Tickets - User's Guide.