XAuth Settings

1. Enter the necessary information:

Reserve Private IP for XAuth User: Enter the length of time (in minutes) during which, after the initial session ends, you can begin another session without being prompted to log on again.

Default Authentication Server: Select the authentication server that you want to perform XAuth authentication. The default is Local, but you can select another authentication server—RADIUS, SecurID or LDAP— that you previously configured.

Query Client Settings on Default Server: Select this feature if you configured XAuth to perform address assignment as well as authentication. In this case, the authentication server returns an IP address and other settings (such as DNS and WINS IP addresses) to the user upon successful authentication.

CHAP: (Challenge Handshake Authentication Protocol) Select this option if you want the NetScreen device to use CHAP only to send a challenge (encryption key) to the remote client. (The remote client then uses the key to encrypt his or her login name and password.)

Note: If you do not select this option, the NetScreen device first attempts a negotiation using CHAP. If the negotiation fails, the NetScreen device then attempts a negotiation using PAP.

IP Pool Name: Select the IP pool from which you want the server to get the IP addresses to assign to users.

DNS Primary Server IP: Enter the IP address of the primary DNS server.

DNS Secondary Server IP: Enter the IP address of the secondary DNS server.

WINS Primary Server IP: Enter the IP address of the primary WINS server.

WINS Secondary Server IP: Enter the IP address of the secondary WINS server.

2. Click Apply to save the settings.