Beyond its powerful network firewall and VPN technologies, the Barracuda NextGen Firewall F-Series provides seamless integration with all authentication methods (e.g., Active Directory, RADIUS, LDAP/s, etc.) to facilitate policy configuration based on the actual user and group information and not just IP addresses. User visibility and control is a significant factor for handling network traffic and creating policies. If you do not have an external authentication server available, you can create and maintain a list of local users and groups on the F-Series. The F-Series can also use the Barracuda DC Agents on the MSAD server and the Barracuda Terminal Server Agents on the Microsoft Terminal server to provide fully transparent user authentication.
You can use local and external authentication for the following services and features:
- Forwarding Firewall and Firewall Authentication
- HTTP Proxy
- URL Filter
- VPN Service (C2S VPN and SSL VPN)
- Access Control Service
- FTP Gateway
- SSH Proxy
- Mail Gateway
- Administrator Accounts
By integrating the F-Series Firewall with your authentication server, you can configure policies that apply to specific users and groups. The F-Series lets you configure a range of external authentication schemes, such as
- Microsoft Active Directory (MSAD)
- Barracuda DC Agent
- Lightweight Directory Access Protocol (LDAP)
- Remote Access Dial In User Service (RADIUS)
- Terminal Access Controller Access Control System (TACACS+)
- RSA-ACE SecurID
- Barracuda Web Security Gateway
- Barracuda Terminal Server Agent
- Wi-Fi AP Authentication
- Online Certificate Status Protocol (OCSP)
If no external authentication service is available, NGF Local Authentication locally manages users and groups on your F-Series Firewall.
For more information, see: How to Configure NGF Local Authentication.