Manualshelf

Troubleshooting guide

ManualsBrandsBay Networks ManualsComputer equipmentBayRS
81828384858687888990
Chapter 8 Troubleshooting LDAP Servers and the AMC Introduction
Advanced Technical Reference Guide 4.1 June 2000 81
Troubleshooting LDAP Servers and the AMC
Introduction
This document contains useful information about LDAP Servers and the VPN-1/FireWal~1 Account
Management feature.
To implement the VPN-1/FireWal~1 4.1 Account Management module, you must install and configure three
components:
FireWall-1
An LDAP server containing users, groups and templates information
Account Management Client (AMC)
The following information will help you debug and troubleshoot each component.
Note – For important information about how LDAP is used in VPN-1/FireWal~1, see “VPN-1/FireWall-1
LDAP Account Management” in Chapter 5, “Managing Users” of VPN-1/FireWall-1 Administration Guide.
LDAP problems
LDAP problems can be divided into these categories:
1. AMC problems
Installation
GUI
Problems while using the AMC.
2. VPN-1/FireWall-1 related issues
3. LDAP related issues
Installation
Limitations
Known problems
This document covers the first two categories. Since the installation category is specific for each type of LDAP
Server, you should consult the documentation accompanying the LDAP Server.
Introduction to Account Management
Account management for a large network can be a daunting task. Maintaining synchronized user databases is a
time consuming chore. Organizations that have multiple user databases in one firewalled network can
appreciate a process where all databases are maintained from one location.
VPN-1/FireWall-1 allows such a process through the use of the Account Management Client.
Security engineers can define and maintain databases with the Account Management Client (AMC) using the
Lightweight Directory Access Protocol (LDAP). The Account Management Client is an independent module
used to integrate an LDAP server with VPN-1/FireWall-1 user authentication.
Note – For important information about how LDAP is used in VPN-1/FireWall-1, see “VPN-1/FireWall-1
LDAP Account Management” in Chapter 5, “Managing Users” of the VPN-1/FireWall-1 Administration Guide.