User guide
User and Group Management
188 Firebox X Edge e-Series
About LDAP/Active Directory authentication
If you use LDAP authentication, you do not have to keep a separate user database on the Firebox X Edge. You
can configure the Edge to forward user authentication requests to a generic LDAP or Active Directory server.
You can use LDAP authentication and local Firebox authentication at the same time.
With LDAP authentication, user privileges are controlled on a group basis. You can add the names of your
existing LDAP or Active Directory user groups to the Firebox X Edge configuration and assign privileges and a
WebBlocker profile. When users authenticate to the Edge, they prepend their LDAP domain name to their user
name in the authentication dialog box (domain\user name). If you use an Active Directory authentication
server, users can also authenticate using their fully qualified domain name (username@mycompany.com).
About using third-party authentication servers
If you use a third-party authentication server, you do not have to keep a separate user database on the Firebox.
You configure a third-party server with the instructions from its manufacturer, install the server with access to
the Firebox, and put it behind the Firebox for security. You then configure the Firebox to forward user
authentication requests to that server. If you create a user group on the Firebox that authenticates to a third-
party server, make sure you create a group on the server that has the same name as the user group on
the Firebox.
To configure the Firebox for third-party authentication servers, see:
Configure the LDAP/Active Directory authentication service
Enable RADIUS authentication