Dell PowerConnect W Clearpass 100 Software 3.7 Deployment Guide - Page 104
Testing External Authentication Servers
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 104 highlights
returned. If no match is found, false is returned, which means that authorization fails and the user's AccessRequest will be rejected. The in_array() comparison is done in a case-sensitive manner. Be sure to use the correct case as returned by the LDAP query for the group name. Also note that the complete distinguished name (DN) for the group must be specified, as this is the value checked for in the array of values returned for the 'memberOf' attribute. The primary group of a user assigned in Active Directory cannot be checked in this way, as Active Directory does not return the primary group in the values of the 'memberOf' attribute. You can build logic that uses the $user['primarygroupid'] property instead to work around this issue. Testing External Authentication Servers The Test Authentication option for a server may be used to check the connection to an authentication server, or verify the authorization rules that have been configured. To test an authentication server, click its Test Authentication link on the Edit Authentication Server form. The server's row expands to include the Test Authentication form. 1. In the Test Username and Test Password fields, enter the information for a user's credentials stored on the server. 2. (Optional) To view additional details-for example, authentication rules, or account status or permitted limits-mark the Show detailed authorization info check box in the Advanced row. 3. Click the Run Test button. A progress bar is shown during the test, and results are displayed below the Test Authentication form. Testing a Local Certificate Authority External Authentication Server For Local Certificate Authority external authentication servers, additional testing options are included to simulate EAP-TLS authentication with a client certificate. 104 | RADIUS Services Amigopod 3.7 | Deployment Guide