Access Hierarchy and Statements

Use the statements in the access configuration hierarchy to configure access to the device and authentication methods, including address assignment and address pool, user and firewall authentication, a group profile, LDAP options and LDAP server configuration, an access profile, RADIUS options and RADIUS server configuration, and SecurID server configuration.

For more information about the access hierarchy, see the following guides:

• For concepts, examples, and configuration instructions that explain the features within the access hierarchy, see the Junos OS Security Configuration Guide.
• For a list of software features within the access hierarchy that are supported on different SRX Series and J Series devices, see the Junos OS Feature Support Reference for SRX Series and J Series Devices.
• For information about access statements not explained here that are shared across Juniper Networks devices, see the Junos System Basics Configuration Guide.

This chapter includes the following topics:

• Access Configuration Statement Hierarchy
• admin-search
• assemble
• authentication-order
• banner
• base-distinguished-name
• client-group
• client-idle-timeout
• client-name-filter
• client-session-timeout
• configuration-file
• count
• default-profile
• distinguished-name
• domain-name
• fail
• firewall-authentication
• firewall-user
• ftp
• http
• ldap-options
• ldap-server
• login
• pass-through
• password
• port
• radius-options
• radius-server
• retry
• revert-interval
• routing-instance
• search
• search-filter
• secret
• securid-server
• separator
• session-options
• source-address
• success
• telnet
• timeout
• traceoptions
• web-authentication