LDAP authentication settings (AD)

[mjscrmpm]

I'm running a Sonicwall 2040 with Enhanced OS. I've connected the LDAP to my DC (win2k3). This is working great.

My problem is that I want only certain users to be able to authenticate to the sonicwall. I've created a group in my Active Directory called "ACCESS" and only members of this group can log into the Sonicwall.

This setup is "half-working" as I've got a local group called "ACCESS" (per the eOS manual), and a rule that only those members can get HTTP access. The configuration problem I have is that the Sonicwall will authenticate ANY Domain User (although they will not get HTTP access unless they are in in the AD group "ACCESS."

 

[mjscrmpm]

I ended up figuring it out.

I made and OU for only the people I wanted to have access. I created another domain admin in this OU. he authenticates the LDAP. I put "All LDAP" users in the local group "ACCESS." this handles my needs.

I guess where I might run into problems is if i have multiple access groups, but that's not a current concern.