Manualshelf

Specifications

ManualsBrandsBarracuda Networks ManualsComputer equipmentSSL VPN
21222324252627282930
27
Page Size: The number of objects returned in each paged request, the default should be
acceptable in most cases.
User/ Group Cache TTL: This is the minimum ‘Time to Live’ value which must be greater
than 10 seconds. Default value of 300 seconds stores Active Directory user information in
cache for 5 minutes before clearing the cache. The next required action fetches user details
again caching for another 300 seconds. A value too low will cause severe delays in processing
any action as the appliance will continually be re-fetching data from the domain controller.
Member of Supported: If the memberOf attribute supported on the user account, the groups
are inspected to find the user's group associations. Note: Microsoft Small Business Server
requires this to be unticked.
Enforce username case sensitivity: This enables checking of username case sensitivity
during log-on.
Follow Referrals: Child domains require this value to be selected.
With the configured information the installation wizard will attempt to connect to the domain
controller and valid the service account.
The wizard will allow the configured details to be adjusted before selecting Next again to retry.
Once a successful connection is made and the service account has been authenticated the Active
Directory user database is ready to be used.
Configuring Enhanced Active Directory
Enhanced Active Directory configuration is very similar to the basic Active Directory configuration. It
is divided into three distinct tabs.
The connections tab configures how to connect to the Microsoft Windows Active Directory service.
The only differing information for Enhanced Active Directory is the service account details.
Service Account DN: The service account details needed to use authenticate Active
Directory users. This account needs to be fully qualified e.g. CN=John Smith,
DC=Employees.
Service Account Password: The password for the service account.
Enhanced!Activ e!Directory!data base!uses!simple!authentication!f or!the!service!account.!Simple!
authentication!a l l ows!the!use!of!non‐standard!char acter!sets.!With!t his!type!of!authentication!
the!account!cre dentials!need!to!be!fully!qualified.
The next tab OU Filter is an optional tab but allows specific organizational units to be added or
removed.
The differing information here is the ‘Group OU’ information:
Create Group OU: The OU location within the AD where new groups will be created.
Create User OU: The OU location within the AD where new users will be created.
User!Account!Authentication!uses!Simple!Authentication!
Enhanced!Activ e!Directory!uses!Simple!authenti cation!for!both!th e!service!account!as!well!as!
user!accounts.