Create a new LDAP domain

If the name of the External LDAP Domain element does not match the name of the Windows logon domain, you must create a new External LDAP Domain element, then update the references to user groups and users in the policy of the NGFW Engine.

Note: This task is only required if you use SMC 6.6.2 or lower.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration, then browse to User Authentication.
  2. Right-click Users, then select New > External LDAP Domain.
  3. Enter the name of the Windows logon domain as the name of the External LDAP Domain element.
  4. Select Default LDAP Domain.
    The default LDAP domain is used for all authentication unless otherwise specified in the IPv4 or IPv6 Access rules.
  5. Select a server, then click Add to bind the LDAP Server to the LDAP domain.
  6. (Optional) On the Default Authentication tab, click Select to define the allowed authentication methods for all accounts in this LDAP domain.
  7. Click OK.
    The new External LDAP Domain element is added to the list of available LDAP domains.

Next steps

Update the references to users in the policy of the NGFW Engine to refer to user groups and users that belong to the new LDAP domain.