Determine your requirements, Determine your requirements -1 – NETGEAR ProSafe SSL312 User Manual
Page 47
4-1
v1.1, November 2006
Chapter 4
Setting Up User and Group Access Policies
This chapter describes how to define users and groups and how to configure SSL VPN
Concentrator access policies and bookmarks for the users and groups. This chapter includes the
following topics:
•
•
Users, Groups and Global Policies
•
•
•
•
Using Network Resource Objects to Simplify Policies
Determine Your Requirements
The ProSafe SSL VPN Concentrator 25 provides an extremely flexible and granular architecture
for managing users and groups. Depending on your requirements, you can implement a simple or
complex policy structure. Some general guidelines are:
•
If you have a small number of users, all with the same privileges, and no central authentication
server, you can just add your users to the SSL VPN Concentrator’s local user database, using
the default group and domain.
•
If you use a RADIUS, LDAP, NT or Active Directory authentication server, you do not need
to add individual users into the SSL VPN Concentrator unless you wish to define specific
policies or bookmarks per user. Configure groups using the same group names as defined in
your authentication server.
•
To create complex policies involving groups of host names, IP addresses or IP address ranges,
you can define these groups as network objects using Network Resources as described in
“Using Network Resource Objects to Simplify Policies” on page 4-20
.
•
To present different portal content to different users (for example, external suppliers), create
the new portal layout, then add a new domain, selecting the new portal layout.