Welcome to the fourth publication of a series of articles dedicated to UserGate products . In this article, we will look at how to create a local user on the UserGate device, add an LDAP connector to connect to Microsoft Active Directory, and configure a captive portal.
, , - , .
UserGate ( ). . :
LDAP-;
Radius;
TACACS+;
Kerberos;
NTLM;
SAML (SSO).
UserGate :
Unknown β , ;
Known β , ;
Any β ( Known Unknown);
β , .
captive-. UserGate , kerberos. , .
, , :
β . Captive-, .
IP- , MAC- MAC IP-. , MAC / IP-.
VLAN ID VLAN. , VLAN.
. , , , 2- .
, , , IP/MAC/VLAN , , .
:
LDAP-
Active Directory LDAP-, Captive-. β β ββ β LDAP-β.
β LDAPβ ββ, , LDAP IP-. βBind DN (Β«loginΒ»)β ( , ), LDAP. DOMAIN\username username@domain. , β LDAPβ , , Captive- .
, , - . βKerberos keytabβ keytab-. Kerberos, UserGate Kerberos, kerberos, LDAP.
Captive-
Captive- (Unknown users), , Windows IP-. , Captive- SMS e-mail.
Captive- HTTP HTTPS. .. , HTTP HTTPS.
Captive- :
, β (LDAP-).
Captive-:
, . UserGate :
IP-. IP- , NAT- UserGate.
cookie. cookie. , NAT-, HTTP(S) , Captive-. , cookie, Unknown user.
captive- .
Captive- , , .
captive- Captive-, .
, , URL http://logout.captive ββ.
, LDAP- UserGate Microsoft Active Directory, captive-. SSL- HTTP HTTPS .
(Telegram, Facebook, VK, TS Solution Blog)!