Users > Settings
The SonicWALL provides a mechanism for user level authentication that gives
users access to the LAN from remote location on the Internet as well as a means
to bypass content filtering. Also, you can permit only authenticated users to
access VPN tunnels and send data across the encrypted connection. User level
authentication can be performed using a the local user database on the SonicWALL,
an external RADIUS server, or a combination of the two applications. The local
database can support up to 1,000 users. If you have more than 1,000 users, you
must use RADIUS for authentication.
- Select Local Users to configure users in the local database using the
Users > Local Users and Users > Local Groups pages.
- Select RADIUS if you have more than 1,000 users or
want to add an extra layer of security for authenticating the user to the
If you select RADIUS for user authentication, users must
log into the SonicWALL security appliance using HTTPS
in order to encrypt the password sent to the SonicWALL. If a user attempts
to log into the SonicWALL using HTTP, the browser is automatically redirected
to HTTPS. Clicking on Configure displays the RADIUS
- Select RADIUS + Local Users if you want to use both
RADIUS and the SonicWALL local user database for authentication. Clicking
on Configure displays
the RADIUS Configuration window.
- Select LDAP if you use a Lightweight Directory Access
Protocol (LDAP) server or Microsoft Active Directory (AD) server to maintain
data. Clicking on Configure displays the LDAP
- Select LDAP + Local Users if you want to use both LDAP
and the SonicWALL local
user database for authentication. Clicking on Configure displays the LDAP
Global User Settings
The settings listed below apply to all users when authenticated through
the SonicWALL security appliance.
Inactivity timeout (minutes): users can be logged out of the SonicWALL after
a preconfigured inactivity time. Enter the number of minutes in this field.
The default value is 5 minutes.
Enable login session limit: you can limit the time a
user is logged into the SonicWALL by selecting the check box and typing
the amount of time, in
minutes, in the Login session limit (minutes) field. The default value
is 30 minutes.
Login page timeout (minutes): defines how much time
a user has to log in before the login page times out. If it times out,
a message displays saying
they must click before attempting to log in again.
Show user login status window with logout button: causes
a status window to display with a Log Out button during the user’s
session. The user can click the Log Out button to log out of their session.
User's login status window refreshes every (minutes):
determines how often the users’ status display is updated.
Enable disconnected user detection: causes the SonicWALL
to detect when a user’s connection is no longer valid and end the
User's login status window sends heartbeat every (seconds):
sets the frequency of the heartbeat signal used to detect whether the user
still has a valid
Timeout on heartbeat from user's login status window (minutes):
sets the time needed without a reply from the heartbeat before ending the
Allow these HTTP URLs to bypass users authentication access rules:
Define a list of URLs users can connect to without authenticating. To add
to the list:
- Click Add below the URL list.
- In the Enter URL window, enter the top level URL
you are adding, for example, www.sonicwall.com. All sub directories
included, such as www.sonicwall.com/services/documentation.html.
- Click on OK to add the URL
to the list.
Click Apply to update your Global User Settings changes.
Acceptable Use Policy
An acceptable use policy (AUP) is a policy users must agree to follow in order
to access a network or the Internet. It is a common practice for many businesses
and educational organizations to require users to accept the terms of an acceptable
use policy before accessing the network or Internet. The SonicWALL allows you
to create an Acceptable Use Policy page that displays before users access a
Display on login from - select the network interface(s) you want
to display the Acceptable Use Policy page when users login. You can choose
Trusted Zones, WAN Zone, Public Zones, Wireless
Zones, and VPN Zone in
- Acceptable Use Policy - enter your Acceptable Use Policy text in
the text box. You can include HTML formatting. The page that is displayed
to the user includes an I Accept button or Cancel button for user confirmation.
Click Apply to update your Acceptable Use Policy configuration.
Click the Preview button to display your Acceptable Use Policy page.
Help Table of Contents