D-Link DBG-2000 Product Manual 1 - Page 79

Splash page editor Basic login page Local authentication Authentication server 3rd party credentials Simultaneous login Session timeout Session limited Idle timeout URL redirection URL for redirection Redirection interval Assign VLAN VLAN (ID/Name) Save Cancel DBG-2000 User Guide Click this button to edit the existing splash page or add a new splash page for the corresponding authentication type. For details, please refer to the Splash page editor page. Select any one of the authentication methods. The credentials entered on the login page are validated against one of the following authentication servers: Local Authentication: Local authentication is a method where the end-user is redirected to a page that provides options to enter username and password validated against the configured user database of the device. Authentication Server: If this is selected, the end-user is redirected to a page that provides options to enter username and password validated against the configured external authentication server. The list of servers includes RADIUS, LDAP, POP3, Active Directory, and NT domain. Select a local authentication server from the drop-down list. This field is available when you select Local authentication as the Basic login page. Select one of the external authentication servers from the drop-down list and then select the Primary, Secondary, and Tertiary servers for the selected external authentication server. If you want to add an external authentication server, click the Add a Server button. This opens the Add server page of the selected server type. For details, please refer to the Authe ntication servers page. If you want to see a list of configured authentication servers, click the Authentication server list. You will be redirected to the Authentication servers page. Select the checkbox of the external third-party server where the users provide credentials to gain access to the Internet. It allows multiple clients to log in with the same credentials. Session timeout is the time configured for the clients connected to the gateway to reauthenticate to continue using the Internet services. Enter or select the session timeout in minutes. The range is from 1 to 1440. You may restrict the number of active user sessions for each account. For example, if you select "Unlimited," it means an unlimited number of users can use the same account. Idle timeout refers to the end of the session when no data traffic is observed for the given amount of time. The client connected to the gateway has to re-authenticate once the idle timeout is observed to access the Internet. This value is per gateway and applicable to all the clients connected to the gateway. The range of idle timeout is between 1-1440 minutes. If enabled, the user is redirected to the configured URL after the successful authentication. Enter the URL where you want the user to be redirected after a successful login. Select the periodic time interval when the user will be redirected to the URL mentioned in the above field. Enable this feature if you want to assign the captive portal to any VLANs. Select the VLAN ID or name on which the captive portal is to be enabled. Click Save to save your settings. Click Cancel to revert to the previous settings. High Availability High availability refers to the availability of the default path without configuring dynamic routing or router discovery protocols on each host. The feature that is used to provide a default path is Virtual Router Redundancy Protocol (VRRP). VRRP is an election protocol that dynamically assigns a virtual router to one of the VRRP routers on a LAN. A virtual router is a router that acts as a default router for hosts on the shared LAN. A VRRP router is configured to run the protocol with one or more virtual routers on the IP address of the physical Ethernet. 79