Advanced Networking Services Guide
Table Of Contents
- vCloud Air Advanced Networking Services Guide
- Contents
- Preface
- Introducing Advanced Networking Services for vCloud Air
- Advanced Routing for vCloud Air
- Certificate and Security Group Management
- Network Security and Isolation
- Load Balancing
- Secure Access Using Virtual Private Networks
- IP Service Management: NAT and DHCP
- Index
Table 6‑3. RSA-ACE authentication server options (Continued)
Option Description
Use this server for
secondary
authentication
Whether to use the server as the second level of authentication.
Terminate Session if
authentication fails
Ends the session when authentication fails.
NOTE Adding a user for SSL VPN-Plus automatically adds a local authentication server in the SSL
VPN-Plus > Authentication page and configures the default values. If necessary, select Enable
password policy and Enable account lockout policy to view and edit the default values. See “Add
an SSL VPN-Plus User,” on page 57 for information.
n
Local authentication server
Table 6‑4. Local authentication server options
Option Description
Enable password
policy
Defines a password policy. Specify the required values.
You must set a minimum length, the time until expiration, and when users are notified
of expiration. All other fields are optional.
Enable account
lockout policy
(Optional) Defines an account lockout policy. Specify the required values.
1 In Retry Count, type the number of times a remote user can try to access his or her
account after entering an incorrect password.
2 In Retry Duration, type the time period in which the remote user's account gets
locked on unsuccessful login attempts.
For example, if you specify the Retry Count as 5 and Retry Duration as 1 minute,
the remote user's account will be locked if he makes 5 unsuccessful login attempts
within 1 minute.
3 In Lockout Duration, type the time period for which the user account remains
locked. After this time, the account is automatically unlocked.
Status Enables or disables the server.
Use this server for
secondary
authentication
(Optional) Whether to use the server as the second level of authentication.
Terminate Session if
authentication fails
(Optional) Ends the session when authentication fails.
6 Click OK.
What to do next
Create an installation package containing the SSL Client so remote users can install it on their local systems.
See “Add an Installation Package,” on page 56
If necessary, add local users who are not members of external authentication servers so that they can
connect with SSL VPN-Plus. See “Add an SSL VPN-Plus User,” on page 57.
Add an Installation Package
Create an installation package of the SSL VPN-Plus client for the remote user.
If you require different installation parameters per operating system (Windows, Linux, and Mac), add an
installation package for each operating system. The installation packages you add for SSL VPN-Plus are
downloadable from the SSL VPN-Plus portal. New users are prompted to download and install a package
when they log in for the first time.
vCloud Air Advanced Networking Services Guide
56 VMware, Inc.