Account
From Wiki of WFilter NG Firewall
(Difference between revisions)
(→New Local Account) |
|||
| (2 intermediate revisions by one user not shown) | |||
| Line 14: | Line 14: | ||
== New Local Account == | == New Local Account == | ||
| − | You need to configure account's username, password, valid date, access priviledge and pppoe properties. | + | You need to configure account's username, password, valid date, group, sessions, mac binding, access priviledge and pppoe properties. |
* Supported access type: | * Supported access type: | ||
** PPPoE: allow this user to access WFilter NGF's pppoe service. Please check [[Pppoe|PPPoE]] for details. | ** PPPoE: allow this user to access WFilter NGF's pppoe service. Please check [[Pppoe|PPPoE]] for details. | ||
| Line 20: | Line 20: | ||
** Web: allow this user to authenticate via web auth. Please check [[Webauth|Web Auth]] for details. | ** Web: allow this user to authenticate via web auth. Please check [[Webauth|Web Auth]] for details. | ||
** Static IP: bind static IP to an username. | ** Static IP: bind static IP to an username. | ||
| + | * "Concurrent Logins": maximum concurrent sessions of this user. No limit by default. | ||
* "MAC Binding": supports "dynamic binding" and "static binding". | * "MAC Binding": supports "dynamic binding" and "static binding". | ||
** Static: this user can only be connected from the bound MAC addresses. Multiple MACs are separated by commas. | ** Static: this user can only be connected from the bound MAC addresses. Multiple MACs are separated by commas. | ||
| Line 25: | Line 26: | ||
** Dynamic3: automatically bind the first three authenticated mac addresses. | ** Dynamic3: automatically bind the first three authenticated mac addresses. | ||
** Dynamic5: automatically bind the first five authenticated mac addresses. | ** Dynamic5: automatically bind the first five authenticated mac addresses. | ||
| + | ** Automatic IP-MAC binding: automatically add IP-MAC addresses to "IP-MAC binding". | ||
* Expired users can not access any authentication service. | * Expired users can not access any authentication service. | ||
* PPPoE properties are only valid to PPPoE users. | * PPPoE properties are only valid to PPPoE users. | ||
** "Bandwidth Limit": limit this user's real-time bandwidth rate. | ** "Bandwidth Limit": limit this user's real-time bandwidth rate. | ||
| − | ** "Static IP": assign a static ip address to this user when this user is connected via pppoe. | + | ** "Static IP": assign a static ip address to this user when this user is connected via pppoe or VPN. |
[[File:Faq_en_account001.png|600px]] | [[File:Faq_en_account001.png|600px]] | ||
| − | |||
== Third Party Accounts == | == Third Party Accounts == | ||
Latest revision as of 12:43, 19 April 2023
Contents |
[edit] 1 Introduction
This module defines WFilter NGF's local accounts of, which can be used for:
For example, you can choose usernames in "Applied to" targets for polices:
[edit] 2 New Local Account
You need to configure account's username, password, valid date, group, sessions, mac binding, access priviledge and pppoe properties.
- Supported access type:
- "Concurrent Logins": maximum concurrent sessions of this user. No limit by default.
- "MAC Binding": supports "dynamic binding" and "static binding".
- Static: this user can only be connected from the bound MAC addresses. Multiple MACs are separated by commas.
- Dynamic1: bind this user to MAC address of the first time connection.
- Dynamic3: automatically bind the first three authenticated mac addresses.
- Dynamic5: automatically bind the first five authenticated mac addresses.
- Automatic IP-MAC binding: automatically add IP-MAC addresses to "IP-MAC binding".
- Expired users can not access any authentication service.
- PPPoE properties are only valid to PPPoE users.
- "Bandwidth Limit": limit this user's real-time bandwidth rate.
- "Static IP": assign a static ip address to this user when this user is connected via pppoe or VPN.
[edit] 3 Third Party Accounts
Users authenticated via third party authentication services will be listed. You can click "delete" to delete expired users.
- Third party authentication
- "Email Authentication".
- "Ldap Authentication".
- "Radius Authentication".
- Access Type:
[edit] 4 Login History
Login history of users.
