Huawei firewall configuration LDAP service
Huawei firewall configures LDAP service, synchronizes LDAP users, logs in to SSL*** through LDAP users, and accesses the management firewall.
Preparation:
LDAP server IP address: 172.16.100.253
Firewall IP address: 192.168.100.254
Steps:
- Prepare to build LDAP service in advance;
- Log in to the firewall, configure the LDAP service;
open the object-authentication server-LDAP
Click New:
配置好后,可以点击检测,输入LDAP用户账号和密码,验证配置是否生效:
-
Configure the security policy to
allow access from the firewall to the LDAP service. If the second step is not successful, check whether the firewall is connected to the LDAP server under ping. If there is no connection, you need to configure a security policy. The access
source from the firewall to the LDAP server is secure Zone: local
Destination Security zone: trust
Destination IP address: 172.16.100.253 - Import users:
Click Object-User-User Import, select Server Import
New Server Import:
Server Type: LDAP
Server Name: The LDAP authentication server just created
Import Type: Select whether to import users, or import users and user groups to the local
check box to add Volume synchronization, set synchronization time
After the creation is complete, click Import Now, and view the import record.