1. Home
    2. /
  2. Manuals
    3. /
  3. NETGEAR
    4. /
  4. FVS318N
    5. /
  5. 60
Page 296 / 414 Scroll up to view Page 291 - 295
Manage Users, Authentication, and VPN Certificates
296
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
To edit a VPN group:
1.
Select
Users > Groups
. The Groups screen displays (see
Figure 178
on page 294).
2.
In the Action column of the List of Groups table, click the
Edit
table button for the group that
you want to edit. The Edit Groups screen displays. This screen is identical to the Add
Groups screen.
3.
Modify the settings as explained in the previous table.
4.
Click
Apply
to save your changes. The modified group is displayed in the List of Groups
table.
Configure User Accounts
When you create a user account, you need to assign the user to a user group. When you
create a group, you need to assign the group to a domain that specifies the authentication
method. Therefore, you should first create any domains, then groups, and then user
accounts.
Note:
IPSec VPN users always belong to the default domain (geardomain)
and default group (also geardomain) and do not need to be assigned
a user account.
There are two default user accounts:
A user with the name
admin
and the password
password
. This is a user who has
read/write access, is associated with the domain geardomain, and is denied login from
the WAN interface by default. The user name is appended by an asterisk. You cannot
delete this user account.
A user with the name
guest
and the password
password
. This is a user who has
read-only access, is associated with the domain geardomain, and is denied login from the
WAN interface by default. The user name is appended by an asterisk. You cannot delete
this user account.
You can create five different types of user accounts by applying one of the predefined user
types:
SSL VPN user
. A user who can log in only to the SSL VPN portal.
Administrator
. A user who has full access and the capacity to change the wireless VPN
firewall configuration (that is, read-write access).
Guest user
. A user who can only view the wireless VPN firewall configuration (that is,
read-only access).
IPSec VPN user
. A user who can make an IPSec VPN connection only through a
NETGEAR ProSafe VPN Client, and only when the XAUTH feature is enabled (see
Configure Extended Authentication (XAUTH)
on page 233).
L2TP user
. A user who can connect over an L2TP connection to an L2TP client that is
located behind the wireless VPN firewall.
Page 297 / 414
Manage Users, Authentication, and VPN Certificates
297
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
To create a user account:
1.
Select
Users > Users
. The Users screen displays. (The following figure shows the
wireless VPN firewall’s default users—admin and guest—and, as an example, several
other users in the List of Users table.)
Figure 180.
The List of Users table displays the users and has the following fields:
Check box
.
Allows you to select the user in the table.
Name
. The name of the user. If the user name is appended by an asterisk, the user is
a default user that came preconfigured with the wireless VPN firewall and cannot be
deleted.
Group
. The group to which the user is assigned.
Type
. The type of access credentials that are assigned to the user.
Authentication Domain
. The authentication domain to which the user is assigned.
Action
. The Edit table button, which provides access to the Edit User screen; the
Policies table button, which provides access to the policy screens.
2.
Under the List of Users table, click the
Add
table button. The Add Users screen displays:
Page 298 / 414
Manage Users, Authentication, and VPN Certificates
298
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Figure 181.
3.
Enter the settings as explained in the following table:
4.
Click
Apply
to save your settings. The user is added to the List of Users table.
Table 73.
Add Users screen settings
Setting
Description
User Name
A descriptive (alphanumeric) name of the user for identification and management
purposes.
User Type
From the drop-down list, select one of the predefined user types that determines the
access credentials:
Administrator
. User who has full access and the capacity to change the wireless
VPN firewall configuration (that is, read/write access).
SSL VPN User
. User who can log in only to the SSL VPN portal.
Guest User
. User who can only view the wireless VPN firewall configuration (that is,
read-only access).
IPSEC VPN User
. A user who can make an IPSec VPN connection only through a
NETGEAR ProSafe VPN Client, and only when the XAUTH feature is enabled (see
Configure Extended Authentication (XAUTH)
on page 233).
L2TP User
. A user who can connect over an L2TP connection to an L2TP client that
is located behind the wireless VPN firewall.
Select Group
The drop-down list shows the groups that are listed on the Group screen. From the
drop-down list, select the group to which the user is assigned. For information about
how to configure groups, see
Configure Groups
on page 293.
Note:
The user is assigned to the domain that is associated with the selected group.
Password
The password that the user needs to enter to gain access to the wireless VPN firewall.
Confirm Password
This field needs to be identical to the password that you entered in the Password field.
Idle Timeout
The period after which an idle user is automatically logged out of the web management
interface. The default idle time-out period is 5 minutes.
Page 299 / 414
Manage Users, Authentication, and VPN Certificates
299
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
To delete one or more user accounts:
1.
In the List of Users table, select the check box to the left of each user account that you
want to delete, or click the
Select All
table button to select all accounts. You cannot
delete a default user account.
2.
Click the
Delete
table button.
Note:
You cannot delete the default admin or guest user.
Set User Login Policies
You can restrict the ability of defined users to log in to the wireless VPN firewall’s web
management interface. You can also require or prohibit logging in from certain IP addresses
or from particular browsers. This section consists of the following subsections:
Configure Login Policies
Configure Login Restrictions Based on IPv4 Addresses
Configure Login Restrictions Based on IPv6 Addresses
Configure Login Restrictions Based on Web Browser
Configure Login Policies
To configure user login policies:
1.
Select
Users > Users
. The Users screen displays (see
Figure 180
on page 297).
2.
In the Action column of the List of Users table, click the
Policies
table button for the user for
which you want to set login policies. The policies submenu tabs display, with the Login
Policies screen in view:
Figure 182.
3.
Make the following optional selections:
To prohibit the user from logging in to the wireless VPN firewall, select the
Disable
Login
check box.
Page 300 / 414
Manage Users, Authentication, and VPN Certificates
300
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
To prohibit the user from logging in from the WAN interface, select the
Deny Login
from WAN Interface
check box. In this case, the user can log in only from the LAN
interface.
Note:
For security reasons, the Deny Login from WAN Interface check box
is selected by default for guests and administrators. The Disable
Login check box is disabled (masked out) for administrators.
4.
Click
Apply
to save your settings.
Configure Login Restrictions Based on IPv4 Addresses
To restrict logging in based on IPv4 addresses:
1.
Select
Users > Users
. The Users screen displays (see
Figure 180
on page 297).
2.
In the Action column of the List of Users table, click the
Policies
table button for the user for
which you want to set login policies. The policies submenu tabs display, with the Login
Policies screen in view.
3.
Click the
By Source IP Address
submenu tab.
In the upper right of the screen, the IPv4
radio button is selected by default. The By Source IP Address screen displays the IPv4
settings. (The following figure shows an IP address in the Defined Addresses table as an
example.)
Figure 183.

Rate

4.5 / 5 based on 2 votes.

Popular NETGEAR Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top