J-Web Configuration

To specify the RADIUS server for external authentication order using the J-Web configuration editor:

1. Select Configuration>View and Edit>Edit Configuration.

   The Configuration page appears.

2. Next to Access, click Configure or Edit.
3. Next to Profile, click Add new entry.
4. In the Profile name box, type prof1.
5. Next to Authentication order, click Add new entry.
6. From the Value choice list, select radius and click OK.

To configure firewall user (ClientsA-E) and assign firewall users (ClientA and ClientB) to client groups alpha, beta, and gamma:

1. Next to Client, click Add new entry.
2. In the Name box, type ClientA.
3. Next to Client group, click Configure or Edit.
4. In the Value box, type alpha and click OK.
5. To specify another client group, in the Value box, type beta and click OK.
6. To specify another client group, in the Value box, type gamma and click OK.
7. Next to Firewall User, click Configure or Edit.
8. In the Password box, type pwd1 and click OK.
9. Next to Client, click Add new entry.
10. In the Name box, type ClientB and click OK.
11. In the Value box, type alpha and click OK.
12. To specify another client group, in the Value box, type beta and click OK.
13. Next to Firewall User, click Configure or Edit.
14. In the Password box, type pwd3 and click OK.
15. To specify another client, next to Client, click Add new entry.
16. In the Name box, type ClientC and click OK.
17. Next to Firewall User, click Configure or Edit.
18. In the Password box, type pwd4 and click OK.
19. To specify another client, next to Client, click Add new entry.
20. In the Name box, type ClientD and click OK.
21. Next to Firewall User, click Configure or Edit.
22. In the Password box, type pwd5 and click OK.
23. To specify another client, next to Client, click Add new entry.
24. In the Name box, type ClientE and click OK.
25. Next to Firewall User, click Configure or Edit.
26. In the Password box, type pwd2 and click OK.

To configure client groups in the session options:

1. Select Configuration>View and Edit>Edit Configuration.

   The Configuration page appears.

2. Next to Access, click Configure or Edit.
3. Next to Profile, click Add new entry.
4. In the Profile name box, type prof1.
5. Next to Session options, click Configure.
6. In the Value box, type u1 and click OK.
7. To specify another client group, in the Value box, type alpha and click OK.
8. To specify another client group, in the Value box, type gamma and click OK.
9. In the Client idle timeout box, type 255.
10. In the Client session timeout box, type 4 and click OK.

To configure the IP address for the LDAP server and LDAP server options:

1. Next to Ldap options, click Configure or Edit.
2. In the Base distinguished name box, type CN=Users,DC=screenos,DC=spg,DC=juniper,DC=net
3. From the Search type list, select Search.
4. Next to Search, click Configure or Edit.
5. In the Search filter box, type sAMAccountName= and click OK.
6. Select the Admin search check box and click Configure or Edit.
7. In the Distinguished name box, type cn=administrator,cn=users,dc=screenos,dc=spg,dc=juniper,dc=net.
8. In the Password box, type pwd10 and click OK.
9. Next to Ldap server, click Add new entry.
10. In the Name box, type 3.3.3.3 and click OK.

To configure the IP addresses for the two RADIUS servers:

1. Next to Radius server, click Add new entry.
2. In the Address box, type 4.4.4.4 and click OK.
3. In the Secret box, type any unreadable data.
4. In the Retry box, type 10 and click OK.
5. Next to Radius server, click Add new entry.
6. In the Address box, type 5.5.5.5 and click OK.
7. In the Secret box, type any unreadable data.
8. If you are finished configuring the device, commit the configuration.
9. To check the configuration, see Verifying Firewall User Authentication

Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice.