User`s guide
Configure Authentication for the Web Server
Chapter 8 Users, Security, and Authentication 152
Configure Authentication for the Web Server
1. Enter the IP address of the Digi Passport unit in the address bar of a
web browser to access the web interface.
2. Select Network > Web server configuration. The Web server
configuration settings are displayed:
3. Ability to see suspicious intruders’ IP address in system logs: Any
suspicious intruder who requests a non-exist web page more than 10
times within the blocking time will be blocked during the blocking time
for a suspicious intruder [Network -> Web server configuration].
Whenever any suspicious intruder is blocked or released, this event will
be logged to the system log.
4. In the Authentication method setting, select an authentication
method, then click Save & apply.
When using remote authentication for the web server, such as RADIUS,
RADIUS Down-local, TACACS+, LDAP, Kerberos, or Custom PAM, user
definitions must also be added to the local database if you want access
as someone other than a user. The user password must be different
from the one used for local authentication; otherwise, the Passport will
authenticate against the local database instead of the remote one. For
details, see "Install and Configure PC Cards" on page 42.
When the user password is approved by the authentication server, the
Digi Passport unit uses the local permission rights to provide access
privileges to ports and the configuration, except as in the note below.
Note: For remote authentication (Radius, TACACS, etc) via the web:
• For web access as a port or system adminstrator, specific named
access lists must be created.
• For port admins. Create the access list title web_padmin and add
all port admins under that.
• For system admins. Create the access list title web_admin and add
all system admins under that.