Beyond its powerful network firewall and VPN technologies, the Barracuda NG Firewall provides seamless integration with all authentication methods (e.g., Active Directory, RADIUS, LDAP/s, etc.) to facilitate policy configuration based on the actual user and group information and not just IP addresses. User visibility and control is a significant factor for handling network traffic and creating policies. If you do not have an external authentication server available, you can create and maintain a list of local users and groups on the Barracuda NG Firewall. The Barracuda NG Firewall can also use the Barracuda DC Agents on the MSAD server and the Barracuda Terminal Server Agents on the Microsoft Terminal server to provide fully transparent user authentication.
You can use local and external authentication for the following services and features:
- Forwarding Firewall and Firewall Authentication
- HTTP Proxy
- URL Filter
- VPN Service (C2S VPN and SSL VPN)
- Access Control Service
- FTP Gateway
- SSH Proxy
- Mail Gateway
- Administrator Accounts
By integrating the Barracuda NG Firewall with your authentication server, you can configure policies that apply to specific users and groups. The Barracuda NG Firewall lets you configure a range of external authentication schemes, such as
- Microsoft Active Directory (MSAD)
- Barracuda DC Agent
- Lightweight Directory Access Protocol (LDAP)
- Remote Access Dial In User Service (RADIUS)
- Terminal Access Controller Access Control System (TACACS+)
- RSA-ACE SecurID
- Barracuda Web Filter Authentication
- Barracuda Terminal Server Agent
- Online Certificate Status Protocol (OCSP)
If no external authentication service is available, NGF Local Authentication locally manages users and groups on your Barracuda NG Firewall.
For more information, see: How to Configure NGF Local Authentication.