Kerio Tech Firewall6 User Manual
Page 211
15.3 Local user database: external authentication and import of accounts
211
Automatic login can be set for the firewall (i.e. for the WinRoute host) or/and for any other
host(s) (i.e. when the user connects also from an additional workstation, such as notebooks,
etc.). An IP address group can be used for specification of multiple hosts (refer to chapter
Warning
Automatic login decreases user’s security. If an unauthorized user works on the computer for
which automatic login is enabled, he/she uses the identity of the host’s user who is authen-
ticated automatically. Therefore, automatic login should be accompanied by another security
feature, such as by user login to the operating system.
IP address which will be always assigned to the VPN client of the particular user can be speci-
fied under VPN client address. Using this method, a fixed IP address can be assigned to a user
when he/she connects to the local network via the Kerio VPN Client. It is possible to add this
IP to the list of IP addresses from which the user will be authenticated automatically.
For detailed information on the Kerio Technologies’ proprietary VPN solution, refer to chap-
ter
Editing User Account
The Edit button opens a dialog window where you can edit the parameters of the user account.
This dialog window contains all of the components of the account creation guide described
above, divided into tabs in one window.
15.3 Local user database: external authentication and import of accounts
User in the local database can be authenticated either at the Active Directory domain or at the
Windows NT domain (see chapter
, step one). To enable these authentication methods,
corresponding domains must be set in the Local User Database section on the Authentication
Options tab.
Figure 15.9
Setting domains for authentication of local accounts