Filter
Top Products
User Management
1097
SonicOS 5.8.1 Administrator Guide
Step 33 Select the LDAP Users tab.
Step 34 Check the Allow only users listed locally box to require that LDAP users also be present in
the SonicWALL security appliance local user database for logins to be allowed.
Step 35 Check the User group membership can be set locally by duplicating LDAP user names
box to allow for group membership (and privileges) to be determined by the intersection of local
user and LDAP user configurations.
Step 36 From the Default LDAP User Group drop-down menu, select a default group on the
SonicWALL security appliance to which LDAP users will belong in addition to group
memberships configured on the LDAP server.
Tip Group memberships (and privileges) can also be assigned simply with LDAP. By creating
user groups on the LDAP/AD server with the same name as SonicWALL security appliance
built-in groups (such as Guest Services, Content Filtering Bypass, Limited
Administrators) and assigning users to these groups in the directory, or creating user
groups on the SonicWALL security appliance with the same name as existing LDAP/AD user
groups, SonicWALL group memberships will be granted upon successful LDAP
authentication.
The SonicWALL security appliance can retrieve group memberships more efficiently in the case
of Active Directory by taking advantage of its unique trait of returning a ‘memberOf’ attribute for
a user.
Step 37 Click the Import user groups button to import user groups from the LDAP server. The names
of user groups on the LDAP server need to be duplicated on the SonicWALL if they are to be
used in policy rules, CFS policies, etc.