Configuring 802.1x User Authentication

Procedure

1. Select an authentication domain to be configured.
2. Select 802.1x access.
3. Configure user information.

   Configure user information on the FW based on the locations and organizational structure of users.

   • Users on the local device

     Create users in the following ways:

     • In User Management List, click Add to create users.

       Parameter	Description
       User Name	Login name used for authentication Each login name (account) must be unique in its authentication domain.
       Display Name	Display name of a user A display name is a user identifier and cannot be used to initiate an authentication request. You are advised to use the employees' names as their display names for easy recognition and management. Users can share a display name. This parameter is unavailable when you create users in batches.
       Description	Description of a user Describe users in a way that makes it easy to find and maintain users.
       Password	User password
       Confirm Password	User password entered again for confirmation

     • Click Import User and import users through the CSV file. For details, see Importing Users and User Groups from a CSV File.

   • Users on the server

     1. Select an existing RADIUS server or add a new one. For details on how to add a RADIUS server, see Configuring a RADIUS Server.

4. Optional: Configure a RADIUS accounting scheme and a RADIUS authorization scheme.

   The RADIUS accounting scheme and the RADIUS authorization scheme apply only to user-defined portal authentication, SSL VPN access, L2TP/L2TP over IPSec, IPSec access, administrator access, and 802.1x access scenarios in which the firewall participates in user authentication.

5. Click Apply.