NEXCOM IFA 1610 User Manual

Copyright © 2014 NEXCOM International Co., Ltd. All Rights Reserved.

IFA 3610/IFA 2610/IFA 1610 User Manual

Chapter 7: The VPN Menu

71

The table at the bottom shows the correspondences between a service (IPsec XAuth, OpenVPN, and L2TP) and the type
of authentication allowed. The only Actions for the mappings is to Edit them. By clicking on Edit, a form will appear, in
which a selector allows to select which authentication backends will be used for that service.

A click on the Add new authentication server link above the tables opens a form in which to supply all data to set up
a new authentication server.

This form replaces the tables displaying the already defined authentication servers and allows to configure a new one,
by specifying appropriate values for the following configuration options.

Name
The name given to the authentication server.

Enabled
Tick the checkbox to enable the server.

Type
Select from the drop-down menu whether the server shall be LDAP / Active directory or local. All the next options, except
for the last one, are available only for the configuration of LDAP servers.

LDAP server URI
The URI of the LDAP server.

LDAP server type
This drop-down menu allows the choice of the type of the authentication server among Generic, Active Directory, Novell
eDirectory, or OpenLDAP.

LDAP bind DN username
The fully distinguished name of the bind DN user, which must have the permission to read user attributes.

LDAP bind DN password
The password of the bind DN user.

The following options depend on the server’s setup and are used to identify which users and groups shall be granted
access to appliance‘s OpenVPN server: LDAP user base DN, LDAP user search filter, LDAP user unique ID attribute, LDAP
group base DN, LDAP group unique ID attribute, LDAP group member attribute and LDAP group search filter.

Limit to specified groups
This option allows to select which groups on the LDAP server are allowed to connect to the appliance‘s OpenVPN server.