User Management
631
SonicOS Enhanced 4.0 Administrator Guide
• MSCHAPv2: Select this to use the Microsoft version 2 implementation of CHAP.
MSCHAPv2 works for Windows 2000 and later versions of Windows.
Step 9 Click the Test button. If the validation is successful, the Status messages changes to Success.
If the validation fails, the Status message changes to Failure.
To complete the RADIUS configuration, click OK.
Once the SonicWALL has been configured, a VPN Security Association requiring RADIUS
authentication prompts incoming VPN clients to type a User Name and Password into a dialog
box.
Configuring LDAP Integration in SonicOS Enhanced
Integrating your SonicWALL appliance with an LDAP directory service requires configuring your
LDAP server for certificate management, installing the correct certificate on your SonicWALL
appliance, and configuring the SonicWALL appliance to use the information from the LDAP
Server.
See the following sections:
• “Preparing Your LDAP Server for Integration” on page 631
• “Configuring the SonicWALL Appliance for LDAP” on page 633
Preparing Your LDAP Server for Integration
Before beginning your LDAP configuration, you should prepare your LDAP server and your
SonicWALL for LDAP over TLS support. This requires:
• Installing a server certificate on your LDAP server.
• Installing a CA (Certificate Authority) certificate for the issuing CA on your SonicWALL
appliance.
The following procedures describe how to perform these tasks in an Active Directory
environment.
Configuring the CA on the Active Directory Server
To configure the CA on the Active Directory server (skip the first five steps if Certificate
Services are already installed):
Step 1 Navigate to Start > Settings > Control Panel > Add/Remove Programs
Step 2 Select Add/Remove Windows Components
Step 3 Select Certificate Services
Step 4 Select Enterprise Root CA when prompted.
Step 5 Enter the requested information. For information about certificates on Windows systems, see