How-To HTTP-Proxy Radius Authentication Windows IAS Server Settings-E 2
How-To HTTP-Proxy Radius Authentication Windows IAS Server Settings-E 2
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
page 2
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
Content
1
1.1
2.1
2.2
2.3
2.4
Browser configuration..................................................................................................................................................... 14
page 3
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
1.1
page 4
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
Start the configuration of IAS. You will find it by following this steps: Start -> All Programs -> Administrative Tools ->
The shown name is arbitrary. If a DNS entry for the firewall exists, you can use it in the field Client address. Otherwise you
have to insert the IP- address.
page 5
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
The shared secret which is to insert in the following dialog is also to be insert in the Securepoint Security Appliance.
page 6
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
You have to modify the Remote Access (RAS) Policies. Click Remote Access Policies. In the right frame appear predefined
rules.
Right click on the second rule Connections to other access servers. This Policy should get a RAS permission. Choose
fi 7
tti
d fi
fi 8
dit
fil di l
page 7
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
page 8
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
Every user who will login at the proxy must get dial-in access.
Go to Start -> Administrative Tools -> Active Directory Users and Computers.
Click right Users under your domain and choose Properties.
Change to tab Dial-in and set Remote Access Permission to Allow access.
Confirm your entries by click OK.
page 9
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
2.1
page 10
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
2.2
For using a proxy, you have to apply a firewall rule. You have to allow that the internal network uses the port of the proxy (default port
8080, service webcache) on the internal interface.
Change to the tab Rules.
Click icon New.
page 11
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
2.3
HTTP Proxy.
In the section General the maximal download and upload can be limited and a parent proxy can be specified. This options are ignored
in this example. Only the virus scanner is activated.
A transparent proxy should not be used because a user authentication shall be conducted.
So uncheck the option Transparent proxy in the section Transparent proxy.
page 12
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
In the section Authentication make the settings for the RADIUS server.
You have to insert the IP- address of the Windows 2003 server and the key (shared secret).
In the other sections could be made more settings. Detailed informations to this configurations you will find in the manual.
When you have saved the configuration and have made a rule updated, you can set the firewall as proxy in the browser
settings.
page 13
How-to: HTTP-Proxy and Radius Authentication and Windows IAS Server settings
2.4
Browser configuration
page 14