It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda NextGen Firewall X

This Product is End-of-Life and End-Of-Support

End-Of-Life and End-Of-Support on December 1st, 2020: All Barracuda Firewall X-Series sales will cease; neither new sales nor any renewals will be available. If you currently hold a maintenance and support contract, you will continue to receive our award-winning support and services until your contract expires. Please see the End-Of-Life definition as described in the End of Support and End of Life Information.

How to Configure LDAP Authentication

  • Last updated on

To authenticate users on a Lightweight Directory Access Protocol (LDAP) server, configure the Barracuda NextGen Firewall X-Series to use LDAP as an external authentication scheme. You can add LDAP configurations for one or more LDAP servers. Connect the X-Series Firewall with your LDAP servers and specify the search settings for the LDAP directory. To reduce load querying for large environments, you can filter unwanted group membership information by creating group filter patterns.

Configure LDAP Authentication

Configure the X-Series Firewall to look up users on your LDAP server.

  1. Go to the USERS > External Authentication page.
  2. Click the LDAP tab.
  3. In the Basic section, click Add.
  4. In the Base DN field, enter the Distinguished Name (DN) where the search in the LDAP directory should be started at. Separate multiple entries with a comma. E.g., OU=yourcompany,OU=external,O=sales,O=world,C=AT
  5. (Optional) Select Use SSL if your LDAP server supports SSL connections.
  6. Enter the IP address or hostname of the LDAP server in the Server Name field.
  7. In the User Field, enter the name attribute of the LDAP searching user field used in your LDAP directory. E.g, cn
  8. Enter the LDAP Password Field used in your LDAP directory.
  9. Select Anonymous if authentication is not required.
  10. In the Admin DN field, enter the Distinguished Name of the administrator who is authorized to perform requests.
  11. Enter the Admin Password for the administrative user.
  12. In the Group Attribute field, specify the name of the attribute field on the LDAP server containing group information.
  13. Select whether to use LDAP Encryption (SSL) for data exchanged with the LDAP directory.
  14. Enter LDAP fields containing email addresses in the Additional Mail Fields. Separate multiple entries with a comma.
    ldap01_67.png

    When selecting Logon to Authenticate, the authenticator will log on to the LDAP server to verify user authentication data. Use this option when the LDAP server does not expose user passwords, not even to the administrator.

  15. Click Save.

The configuration is now added to the EXISTING AUTHENTICATION SERVICES table, and your LDAP domain users can use the LDAP authentication service to be authenticated on the X-Series Firewall.

ldap02_67.png