About User Authentication
156
Firebox X Edge e-Series
When a user license is used
User licensing works differently depending on whether Firebox User authentication is required to
access the external network:
When user authentication is not required to access the external network
A user license is used when user authentication for access to the external network is not required
and the Edge allows traffic to be passed from a computer on the trusted or optional network to
the external network. When a user browses the Internet, the Edge adds the computer IP address
to a list of users. When the limit is reached, all further connections from computers are denied.
When user authentication is required to access the external network.
A user license is used when user authentication is required for access to the external network,
and a Firebox User authenticates. In this case a license is used as soon as a Firebox User
authenticates to the Edge, whether or not traffic is passed from the user’s computer to the
external network.
If a single computer makes both a wired and wireless connection to a Firebox X Edge Wireless at the same
time, it uses two user licenses when it sends traffic to the external network.
When a user license is not used
A user license is not used when:
•
Traffic is passed between the trusted and optional networks.
•
Traffic is passed from a computer on the trusted or optional network to a computer on the other
end of a Branch Office VPN.
•
Incoming traffic of any kind is passed to the Edge protected network.
Traffic is passed from a computer to the Edge itself when no user authentication is required for access
to the external network.
About User Authentication
The Firebox® X Edge e-Series uses advanced authentication options to increase network security. You
can configure the Edge as a local authentication server. You can also configure the Edge to use an
existing Active Directory or LDAP authentication server. When you use LDAP authentication, account
privileges for users that authenticate to the Active Directory/LDAP server are based on group member-
ship.
User authentication gives options to prevent connections to some resources and to help decrease the
number of user licenses necessary. This section gives information on how a user can authenticate to
the Firebox X Edge, how your users and administrators can close an active session, and which options
are available to customize authentication.
Setting authentication options for all users
Some authentication options have an effect on all users. To set or change authentication options:
1
To connect to the System Status page, type
https://
in the browser address bar, and the IP
address of the Firebox X Edge trusted interface.
The default URL is: https://192.168.111.1
2
From the navigation bar, select
Firebox Users > Settings
.
The Settings page appears.
Summary of Contents for Firebox X20E
Page 20: ...The Firebox X Edge and Your Network 8 Firebox X Edge e Series...
Page 32: ...Using the Quick Setup Wizard 20 Firebox X Edge e Series...
Page 64: ...Viewing the Configuration File 52 Firebox X Edge e Series...
Page 92: ...Configuring BIDS 80 Firebox X Edge e Series...
Page 102: ...Configuring the Wireless Card on Your Computer 90 Firebox X Edge e Series...
Page 114: ...Configuring Policies for the Optional Network 102 Firebox X Edge e Series...
Page 138: ...Using Additional Services for Proxies 126 Firebox X Edge e Series...
Page 158: ...Working with Firewall NAT 146 Firebox X Edge e Series...
Page 166: ...Using Certificates on the Firebox X Edge 154 Firebox X Edge e Series...
Page 208: ...Updating Gateway AV IPS 196 Firebox X Edge e Series...
Page 220: ...Frequently Asked Questions 208 Firebox X Edge e Series...
Page 302: ...Limited Hardware Warranty 290 Firebox X Edge e Series...
Page 310: ...298 Firebox X Edge e Series...