1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 40
Page 196 / 342 Scroll up to view Page 191 - 195
9
Configuring Network Access
196
Nokia IP45 Security Platform User’s Guide v4.0
.
Deleting Users
You can delete users with IP45 Satellite X only.
Note
The
admin
user cannot be deleted.
Table 54
Edit User Page Fields
Field
Action
Username
Enter a username for the user.
Expires on
Select the expiry date and time.
Hotspot Access
Allows the user to access hotspot. Uncheck
to deny access to hotspot.
Password
Enter a password for the user. Use five to
twenty-five alphanumeric characters (letters
or numbers) for the new password.
Confirm Password
Re-enter the user’s password.
Administrator
Level
Select the user’s level of access to the Nokia
IP45 portal.
The levels are:
No Access—the user cannot access the
IP45.
Read/Write—the user can log on to the
IP45 and modify system settings.
Read Only—the user can log on to the
IP45, but cannot modify system settings.
For example, you could assign this
administrator level to technical support
personnel who need to view the event log.
Default value: No Access.
VPN Remote
Access
Allows the user to connect to this IP45 by
using their VPN client. For further information
about setting up VPN remote access, see
Chapter 15, “Working with VPNs.”
This option is available in IP45 Satellite X
configuration only
.
Page 197 / 342
Nokia IP45 Security Platform User’s Guide v4.0
197
To delete a user
1.
Choose Users from the main menu.
The Internal Users page opens.
2.
Click the Erase icon next to the user, to delete.
A confirmation message appears.
3.
Click OK.
The user is deleted.
Setting Up Remote VPN Access for Users
You can set up VPN access for users with IP45 Satellite X only.
If you are using the IP45 as a VPN server, you can allow users to access it remotely through their
VPN clients (a Check Point SecureClient, Check Point SecuRemote, IP45 Tele 8, or another
IP45 Satellite X).
To set up remote VPN access for a user
1.
Enable your VPN server by using the procedure in
“To set up the IP45 device as a
SecuRemote VPN server”
on page 259.
2.
Add the user to the system by using the procedure in
“Adding Users”
on page 194.
You must select the VPN Remote Access option.
Using RADIUS Authentication
You can use RADIUS to authenticate both the Nokia IP45 security platform users, and the VPN
clients, trying to connect to the device.
When a user accesses the IP45 GUI and tries to log on, the IP45 sends the entered username and
password to the RADIUS server. The server then checks whether the RADIUS database contains
a matching username and password pair. If so, the user is logged on.
Page 198 / 342
9
Configuring Network Access
198
Nokia IP45 Security Platform User’s Guide v4.0
To use RADIUS authentication
1.
Choose Users from the main menu, and click the RADIUS tab.
The RADIUS page opens.
2.
Complete the fields by using the information provided in
Table 55
.
Check the VPN Remote access check box to enable VPN remote access. This is optional.
3.
Click Apply.
Table 55
gives more information about the fields in RADIUS page.
Table 55
RADIUS Page Fields
Fields
Action
Address
Type the IP address of the computer that run the RADIUS service
(one of your network computers) or click the corresponding This
Computer button to allow your computer to host the service.
To clear the text box, click Clear.
Port
Type the port number on the RADIUS server’s host computer.
To reset this field to the default port (1812), click Default.
Shared Secret
Type the shared secret to use for secure communication with the
RADIUS server.
Page 199 / 342
Nokia IP45 Security Platform User’s Guide v4.0
199
RADIUS Vendor Specific Attributes
Nokia IP45 v4.0 supports RADIUS vendor specific attributes (VSA). The RADIUS can use the
VSA to allocate specific set of permissions to the authenticated user. Multiple permissions can
be specified in a single response. Any permission, provided by the RADIUS overrides the
permission that is configured locally.
To configure vendor specific attributes
1.
Choose Users from the main menu and select RADIUS.
The RADIUS page opens with the list of available options.
Administrator
Level
Select the level of access to the IP45 portal to assign to all users
that the RADIUS server authenticates. The levels are:
No Access: the user cannot access the IP45.
Read/Write: the user can log on to the IP45 and modify system
settings.
Read Only: the user can log on to the IP45, but cannot modify
system settings.
Default value: No Access
Realm
Type the realm to append to RADIUS requests. The realm will be
appended to the username as <username>@<realm>
Time-out
Type the interval of time in seconds between attempts to
communicate with the RADIUS server.
Default value: 3 seconds
Note
You can configure
retries
value by using the command-line
interface. For more information about the command-line interface,
see the
Nokia IP45 Security Platform CLI Reference Guide
Version 4.0
.
Table 55
RADIUS Page Fields (
continued
)
Fields
Action
Page 200 / 342
9
Configuring Network Access
200
Nokia IP45 Security Platform User’s Guide v4.0
2.
Scroll down to RADIUS User Permissions.
3.
Select the administrator level of access from the drop-down list. The following are the
options available.
±
Read/Write
—user can log on to the my.firewall portal and modify system settings.
±
Users Manager
—an administrator who can create new users with
none
as administrator
level and who is a read-only user.
±
Read Only
—user can log on to the my.firewall portal, but cannot modify system
settings.
±
No Access
—user cannot access the my.firewall portal.
4.
If the user can access the network from a remote access VPN client, select the VPN Remote
Access check box.
5.
If the user can log on using the My hotspot page, Select the HotSpot Access check box.
6.
Click Apply.
Access Control
You can set access control to your Nokia IP45 security platform.
To set the access control
1.
Choose Setup from the main menu.
The Firmware page opens.

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top