2024年4月12日发(作者:)
SPX简明配置手册
(Version 8.0)
ArrayNetworks
目录
1. 概述 .............................................................................................................................................................. 4
1.1 前言: .............................................................................................................................................. 4
1.2 SSL VPN简介 ................................................................................................................................. 4
1.3 SSL VPN 网络拓扑 ........................................................................................................................ 4
1.4 Array SPX设备配置概述 ............................................................................................................... 6
2. Spx 设备基本配置 ...................................................................................................................................... 7
2.1 Array SPX的配置管理方式 ........................................................................................................... 7
2.2 SPX系列产品外观指示灯介绍 ...................................................................................................... 7
2.3 SPX 的几种配置模式 ..................................................................................................................... 8
2.4 添加设备管理员 .............................................................................................................................. 9
2.5 设备硬件信息、OS版本及License管理 .................................................................................... 11
2.6 SPX设备的基本信息配置 ............................................................................................................ 12
3. SSL VPN门户(Virtual Site)的建立 ...................................................................................................... 22
3.1 加入新的Virtual Site .................................................................................................................... 22
3.2 配置virtual site 的ssl 协议及数字证书 .................................................................................... 23
3.2.1 Global Mode 与 Virtual site Mode ................................................................................ 23
3.2.2 SSL 协议部分配置概述 ................................................................................................... 24
3.2.3 生成CSR ........................................................................................................................... 24
3.2.4 导入virtual site 数字证书 ................................................................................................ 26
3.2.5 客户端数字证书验证配置 ................................................................................................. 27
3.2.6 LocalDB用户认证配置..................................................................................................... 29
4. Virtual Site 各个应用模块的配置 ........................................................................................................... 31
4.1 WRM Portal 配置 ...................................................................................................................... 31
4.2 File Sharing 配置 ......................................................................................................................... 34
4.3 Application Manager 配置 .......................................................................................................... 35
4.3.1 Java Applet方式 ............................................................................................................... 35
4.3.2 Windows Redirect方式 ................................................................................................... 38
4.4 隧道式VPN L3vpn配置 .............................................................................................................. 40
5. ssl vpn门户Virtal Site认证配置 ............................................................................................................ 42
5.1 Radius 认证服务配置 .................................................................................................................. 42
5.2 LDAP认证服务配置 ..................................................................................................................... 44
5.3 AD认证服务配置 .......................................................................................................................... 45
5.4 SecurID动态口令认证配置 ......................................................................................................... 46
5.5 用户登陆时间控制......................................................................................................................... 47
5.6 基于Mac 地址绑定的配置 .......................................................................................................... 48
6. ssl vpn门户Virtal Site授权配置 ............................................................................................................ 50
6.1 LocalDB的授权 ............................................................................................................................ 51
6.2 Ldap服务器的授权 ....................................................................................................................... 53
6.3 Radius服务器的授权 ................................................................................................................... 54
6.4 Group Map 授权方式................................................................................................................... 55
7. Cluster 方式配置 ...................................................................................................................................... 56
8. 设备管理及排错 ........................................................................................................................................ 59
8.1 Syslog 设置 .................................................................................................................................. 59
2
发布评论