Web Authentication Application Note



Similar documents
VPN PPTP Application. Installation Guide

How to access peers with different VPN through IPSec. Tunnel

VPN L2TP Application. Installation Guide

Enable VPN PPTP Server Function

If you have questions or find errors in the guide, please, contact us under the following address:

How to Setup PPTP VPN Between a Windows PPTP Client and the DIR-130.

How To Configure SSL VPN in Cyberoam

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

SETTING UP REMOTE ACCESS ON EYEMAX PC BASED DVR.

SSL Web Proxy. Generally to access an internal web server which is behind a NAT router, you have the following two methods:

Scenario 1: One-pair VPN Trunk

VPN. VPN For BIPAC 741/743GE

How To Configure A Kiwi Ip Address On A Gbk (Networking) To Be A Static Ip Address (Network) On A Ip Address From A Ipad (Netware) On An Ipad Or Ipad 2 (

Optimum Business SIP Trunk Set-up Guide

MultiSite Manager. Setup Guide

Configuring Global Protect SSL VPN with a user-defined port

Chapter 1 Configuring Basic Connectivity

Windows XP User guide for wired network v1.1

SSL SSL VPN

UAG4100 Support Notes

IIS, FTP Server and Windows

Chapter 1 Configuring Internet Connectivity

COLT Portal User Guide

UAG Series. Application Note. Unified Access Gateway. Version 4.00 Edition 1, 04/2014. Copyright 2014 ZyXEL Communications Corporation

Initial Access and Basic IPv4 Internet Configuration

Accessing the Media General SSL VPN

Using SonicWALL NetExtender to Access FTP Servers

Using the FDO Remote Access Portal

How to Connect SSTP VPN from Windows Server 2008/Vista to Vigor2950

Astaro Security Gateway V8. Remote Access via SSL Configuring ASG and Client

Fonality. Optimum Business Trunking and the Fonality Trixbox Pro IP PBX Standard Edition V p13 Configuration Guide

Configuring a VPN for Dynamic IP Address Connections

Connecting an Android to a FortiGate with SSL VPN

Astaro Security Gateway V8. Remote Access via L2TP over IPSec Configuring ASG and Client

Chapter 2 Connecting the FVX538 to the Internet

Virtual Data Centre. User Guide

I. What is VPN? II. Types of VPN connection. There are two types of VPN connection:

Sophos UTM. Remote Access via PPTP Configuring Remote Client

Configuring an IPsec VPN to provide ios devices with secure, remote access to the network

Enabling Multiple Wireless Networks on RV320 VPN Router, WAP321 Wireless-N Access Point, and Sx300 Series Switches

A. Hot-Standby mode and Active-Standby mode in High Availability

Using a VPN with Niagara Systems. v0.3 6, July 2013

Quick Installation Guide

Multi-Homing Dual WAN Firewall Router

Firewall VPN Router. Quick Installation Guide M73-APO09-380

VoIPon Tel: +44 (0) Fax: +44 (0)

Configuration Guide. How to Configure SSL VPN Features in DSR Series. Overview

Sophos UTM. Remote Access via IPsec Configuring Remote Client

How to configure VPN function on TP-LINK Routers

Configuring IPsec VPN with a FortiGate and a Cisco ASA

My Account Quick Start

How to configure your Windows PC post migrating to Microsoft Office 365

How To Configure Apple ipad for Cyberoam L2TP

Using the FDO Remote Access Portal

MultiSite Manager. Setup Guide

Gigabyte Content Management System Console User s Guide. Version: 0.1

Florida Atlantic University VPN Client Installation Guide

VPN Configuration Guide DrayTek Vigor / VigorPro

7 6.2 Windows Vista / Windows IP Address Syntax Mobile Port Windows Vista / Windows Apply Rules To Your Device

Hallpass Instructions for Connecting to Mac with a Mac

Internet Access Setup

Step-by-Step Setup Guide Wireless File Transmitter

Firmware Release Notes

Grandstream Networks, Inc. UCM6100 Security Manual

Configuring the Cisco ISA500 for Active Directory/LDAP and RADIUS Authentication

EMR Link Server Interface Installation

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

How to Use Remote Access Using Internet Explorer

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

IMS Health Secure Outlook Web Access Portal. Quick Setup

RMS Cloud - Setup Instructions for Windows Computers

V310 Support Note Version 1.0 November, 2011

Remote Access: Citrix Client Setup

USG40HE Content Filter Customization

Configuring SSL VPN on the Cisco ISA500 Security Appliance

Virtual Private Network and Remote Access

Verizon Remote Access User Guide

How To Configure Windows Server 2008 as a RADIUS Server with MS-CHAP v2 Authentication

Using a VPN with CentraLine AX Systems

Quick Installation Guide DIR-620. Multifunction Wireless Router Supporting GSM, CDMA, WiMAX with Built-in 4-port Switch

OpenClinica SSL VPN Access New User Setup Guide

Product Summary RADIUS Servers

SHC Client Remote Access User Guide for Citrix & F5 VPN Edge Client

Quick Installation Guide

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

VPN Configuration Guide WatchGuard Fireware XTM

Web Authentication Proxy on a Wireless LAN Controller Configuration Example

Wireless Network Configuration Guide

Accessing the FTP Server - User Manual

Step-by-Step Setup Guide Wireless File Transmitter

Setting up a Virtual Private Network (VPN) connection Windows 8

ENDIAN Topologies Setup of different Network topologies with Endian Firewalls

F-Secure Messaging Security Gateway. Deployment Guide

How do I Install and Configure MS Remote Desktop for the Haas Terminal Server on my Mac?

Change Advanced Proxy Server Configuration Settings

Quick Installation Guide

Massey University Wireless Network Client Configuration Windows 7

How to configure VPN function on TP-LINK Routers

Active Directory Integration

Transcription:

What is Web Authentication? Web Authentication Application Note Web authentication is a Layer 3 security feature that causes the router to not allow IP traffic (except DHCP-related packets) from a particular client until that client has correctly supplied a valid username and password. Web authentication provides simple authentication without a supplicant or client utility. Keep in mind that web authentication does not provide data encryption. With web authentication, users of a host provide their authentication credentials using a portal or webpage on a web browser. An example of this portal or webpage is shown below. If the authentication credentials are valid, then the host is authorized on the network. If the authentication credentials are not valid, then the host will be blocked from the network until the user enters valid authentication credentials. 1

Quick Web Authentication Demonstration This quick web authentication demonstration provides a very quick and easy demonstration of how to setup web authentication on Vigor 2910. For additional helpful tips and customized configuration for web authentication please refer to the Options for Web Authentication section. 1. Connect the devices as shown in the diagram below: 2. Assign the following IP addresses to the devices: LAN of Vigor 2910: 192.168.1.1/24 WAN of Vigor 2910: 172.17.1.128/24, Gateway: 172.17.1.1 Computer: 192.168.1.10/24; Gateway: 192.168.1.1 You may also use DHCP to get an IP address via Vigor 2910 Helpful tip: You do not have to use these exact IP address. They are just provided as an example to help explain this demonstration. 3. Connect to Vigor 2910 s web configurator and setup the Web Authentication as follows: Choose Enable to enable Web Authentication. In Account Setting, choose Common Account ID, and input the preferred account name and password. Here we use draytek/draytek. Press OK to save the settings. 4. From the computer, open a web browser: 2

Direct the web browser to a web server, e.g., http://www.draytek.com. This time, Vigor 2910 will redirect the web browser to the welcome webpage. The default Welcome webpage looks like this: Click the link HERE on the web page to proceed. If the web browser is Microsoft Internet Explorer, you may get the alert (depending on your web browser s security settings) below: When you see this alert, click Yes. 3

If the web browser is Mozilla Firefox, you may get this alert (depending on your web browser s security settings): If you see this alert, click OK. The web server will redirect the web browser to the Authentication webpage. The Authentication webpage will look something like this: 4

Enter a valid User ID and Password. Here is draytek/draytek. Click OK. The web server should redirect you to the Successful Authentication webpage. Now this user has passed the authentication and should be able to access the Internet. Helpful tip: If somebody in the LAN needs to use non-web applications such as IM applications, video conference and etc, he must first open the web browser and type a random external website to pass the authentication first. Options for Web Authentication Bypass IP in IP-MAC binding list If this box is checked, then the IP addresses in the IP-MAC binding list will originally have the authority to access the Internet without inputting authentication credentials for web authentication first. Only the computers whose IP addresses are not in the IP-MAC binding list need to pass Web Authentication first. Account Setting The same account can be used for different LAN users for web authentication only if Allow user login with the same account is selected. Otherwise, only the first login user can pass web authentication and gain Internet access, other users will get the following error message. 5

There are two account settings, Common Account and Share vpn remote dial in profile. With Common Account and Allow user login with the same account enabled, all the users share the same account. With Share vpn remote dial in profile, you may set different accouts for different users as follows. Enable Share vpn remote dial in profile and press Account Setting. In the Web Authentication User Account setup page, press one index and set the account. 6

Tick Enable this account and set the Username/Password. Helpful tip: Web Authentication User Account shares the same profile as VPN remote dial-in profile. So, if you go to the VPN and Remote Access >> Remote Dial-in User setup page, you will find the profile set in Web Authentication User Account page is also shown in this page. But the status is X, as shown below. Helpful tip: Though web authentication user account and vpn dial-in user share the same profile, you should always setup them respectively in correct setup page. Don t setup the web authentication user account from vpn dial-in user setup page, and vice verse. Timeout Setting Currently we provide four modes here for the timeout mechanism of the authenticated clients. Admininstarator can configure the router to log the clients out in: A special time every day After a duration of time After or a certain length of idle time. 7

When you select Disable auto logout, you may manually log the user out from Connection Status page. 8

Welcome Message The message specified here will be displayed to unauthenticated users when they open a web site for the first time. 9

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information