User management settings

Top  Previous  Next

Overview - local/external OpenLDAP server

 

After selecting and starting the LDAP server you can add users to the user management system. The card User shows all users and their permissions. The permissions can be changed by activating/deactivating the check boxes in this overview.

 

NOTE: Adding and editing users only work with local or external OpenLDAP servers. If you are using an Active Directory (AD) you must change the permissions in the user management of the AD.

 

Overview - Active Directory

2

 

If you are using a Microsoft Active Directory to manage your users, the list with the users and their permissions is fetched from the AD server. Changing the permissions is only possible at the AD server and not within the web interface of the firewall. OpenVPN certificates for users can be downloaded, if you have already created some.

 

New users - local/external OpenLDAP server

 

Create new users here:

Username: The username for the new user.
Password: Enter a new password.
Password (confirmation): Confirm the new password.
First name: Enter the first name of the user.
Sure name: Enter the sure name of the user.
Email: Enter the email address of the user.
VPN (PPTP/L2TP): Check this box if the user should be allowed to use the VPN.
HTTP-Proxy: Check this box if the user should be allowed to use the HTTP proxy.
Mail: Check this box if the user should be allowed to use the SMTP authentication.
Captive Portal: Check this box if the user should be allowed to use the captive portal.

 

Details - local/external OpenLDAP server

 

Change the settings for a user in the detailed overview.

 

Username: The username of the user. Cannot be changed here.
Change password?: Check this box if you want to change the user´s password.
VPN (PPTP/L2TP): Check this box if the user should be allowed to use the VPN. The button "Edit VPN attributes" you can change the VPN settings for PPTP or L2TP.
HTTP-Proxy: Check this box if the user should be allowed to use the HTTP proxy.
Mail: Check this box if the user should be allowed to use the SMTP authentication.
Captive Portal: Check this box if the user should be allowed to use the captive portal. The button "Edit Chillispot attributes" forwards you to the detailed settings of the captive portal (Download settings for the user for example). The button "Reset RADIUS counter" resets these settings.
Download Client Certificate: If you created a client certificate for a user, you can download it here again.

 

VPN Attributes - local/external OpenLDAP server

 

Assigned IP (blank for any IP): Set this value if the user should get a static IP when he connects through PPTP.
Disconnect after session timeout (seconds): If you set this value, the PPTP or L2TP connection will be disconnected after this period of time.

 

 

Captive Attributes - local/external OpenLDAP server

 

Disconnect after session timeout (seconds): If you set this value, the user will be disconnected after this period of time. (Note: If the client uses VPN and Captive portal, this value is the same for both services)
Session Time Used: Shows how long the user has already been connected. This value can be reset by the button besides.
Disconnect after idle timeout (seconds): The connection is disconnected after the period of time with no interaction.
Maximum client upload amount (MB): Set the amount of data a user is allowed to upload in MB.
MBytes uploaded: Shows how many MB a user has already been uploading.
Maximum client download amount (MB): Set the amount of data a user is allowed to download in MB.
MBytes downloaded: Shows how many MB a user has already been downloading.
Maximum Transfer amount (MB): This value sets the maximum transfer amount for up- and download.
Maximum upload rate (kBit/sec): This value sets the bandwidth for upload.
Maximum download rate (kBit/sec): This value sets the bandwidth for download.
Logouttime: The connection will be disconnected when the time reaches this value.