Juniper offers the option, with the SSG firewall, to users to get authenticated via the Local Authentication server, RADIUS Authentication Server, Secure ID, TACACS, and External LDAP Authentication. Perform the following procedure to configure the LDAP Auth Server for the SSG firewall: Configuration Auth Auth Servers New Auth Server
XAUTH is performed during IPSEC to validate that the user is allowed to perform IPEC communication to the firewall. The firewall will generate a RADIUS request to the Infranet Controller to validate the user s identity. In this case, the firewall was never receiving a reply from the IC s radius process.
You can use several security devices to allow user networks to access outside networks by setting up one or more local customer premises equipment (CPE) routers and one or more gateway routers. To protect packets transmitted over the access network, the CPE and gateway devices can establish an IPsec tunnel. The gateway, together with the RADIUS server, manages and records accounting for the network access sessions.
Click OK Note: If you do not have an Authentication Server configured for XAuth, refer to the Example: RADIUS Auth Server on p.33 of the ScreenOS Concepts Examples Guide - Vol 9 - Authentication Servers Click VPNs AutoKey Advanced XAuth Settings Default Authentication Server: From pull-down, select your XAuth Server.