Filter
Top Products
Chapter 35 User/Group
ZyWALL USG 100/200 Series User’s Guide
601
Maximum number
per access
account
This field is effective when Limit ... for access account is checked. Type the
maximum number of simultaneous logins by each access user.
User Lockout Setting
Enable logon retry
limit
Select this check box to set a limit on the number of times each user can login
unsuccessfully (for example, wrong password) before the IP address is locked
out for a specified amount of time.
Maximum retry
count
This field is effective when Enable logon retry limit is checked. Type the
maximum number of times each user can login unsuccessfully before the IP
address is locked out for the specified lockout period. The number must be
between 1 and 99.
Lockout period This field is effective when Enable logon retry limit is checked. Type the
number of minutes the user must wait to try to login again, if logon retry limit
is enabled and the maximum retry count is reached. This number must be
between 1 and 65,535 (about 45.5 days).
User Miscellaneous
Setting
Allow renewing
lease time ...
Select this check box if access users can renew lease time automatically, as
well as manually, simply by checking the Updating lease time automatically
check box on their screen.
Enable user idle
detection
This is applicable for access users.
Select this check box if you want the ZyWALL to monitor how long each
access user is logged in and idle (in other words, there is no traffic for this
access user). The ZyWALL automatically logs out the access user once the
User idle timeout has been reached.
User idle timeout This is applicable for access users.
This field is effective when Enable user idle detection is checked. Type the
number of minutes each access user can be logged in and idle before the
ZyWALL automatically logs out the access user.
Force User
Authentication Policy
Use this section to specify when users must log in to the ZyWALL before the
ZyWALL routes HTTP traffic for them. Once users have logged in, the
ZyWALL can enforce user-aware policies.
This section displays the conditions that are applied, in sequence, to decide
what the appropriate action is.
By default, LAN1 users do not have to log into the ZyWALL. However the
default policies force authentication for WLAN zone users (wireless clients
connected to an AP connected to the ext-wlan interface or the ZyWALL’s own
default WLAN interface). After these wireless clients are authenticated, the
ZyWALL applies the WLAN zone security settings. Un-authenticated WLAN
users can only access the WAN.
Total Policy This is the number of entries configured.
Policy per page Select how many entries to display per page in the screen.
Page x of x This is the number of the page of entries currently displayed and the total
number of pages of entries. Type a page number to go to or use the arrows to
navigate the pages of entries.
# This field is a sequential value, and it is not associated with a specific
condition.
Schedule This field displays the schedule object that specifies when this condition
applies. It displays none if this condition always applies.
Table 196 Object > User/Group > Setting (continued)
LABEL DESCRIPTION