topic Re: Configuration of authentication profile via LDAP in General Topics https://live.paloaltonetworks.com/t5/general-topics/configuration-of-authentication-profile-via-ldap/m-p/17455#M12746 <HTML><HEAD></HEAD><BODY><P>Hi Luca,</P><P></P><P>Yes, add user "all" - see this thread and doc for more details:</P><P><A class="jive-link-message-small" href="https://live.paloaltonetworks.com/message/3103#3103">https://live.paloaltonetworks.com/message/3103#3103</A></P><P></P><P>Thx</P><P>James</P></BODY></HTML> Fri, 24 Sep 2010 12:10:43 GMT James 2010-09-24T12:10:43Z Configuration of authentication profile via LDAP https://live.paloaltonetworks.com/t5/general-topics/configuration-of-authentication-profile-via-ldap/m-p/17454#M12745 <HTML><HEAD></HEAD><BODY><P>Hi to all,</P><P></P><P>we have a PA500 release 3.1.4.</P><P></P><P>We configure an LDAP server that comunicate with a Windows 2003 DC then we create an authentication profile that use that LDAP server; finally we create a vpn profile that use that authentication profile.</P><P></P><P>VPN users can authenticate only if we add the username in the "allow users list" of the authentication profile.</P><P></P><P>Is there any way to configure the authentication to permit all users that are present in the DC instead of add every single user in the "allow list"?</P><P>A better solution is if we can permit the authentication of one or more windows group.</P><P></P><P></P><P>Thanks for your help!</P><P>Luca</P></BODY></HTML> Fri, 24 Sep 2010 08:51:41 GMT https://live.paloaltonetworks.com/t5/general-topics/configuration-of-authentication-profile-via-ldap/m-p/17454#M12745 u4353 2010-09-24T08:51:41Z Re: Configuration of authentication profile via LDAP https://live.paloaltonetworks.com/t5/general-topics/configuration-of-authentication-profile-via-ldap/m-p/17455#M12746 <HTML><HEAD></HEAD><BODY><P>Hi Luca,</P><P></P><P>Yes, add user "all" - see this thread and doc for more details:</P><P><A class="jive-link-message-small" href="https://live.paloaltonetworks.com/message/3103#3103">https://live.paloaltonetworks.com/message/3103#3103</A></P><P></P><P>Thx</P><P>James</P></BODY></HTML> Fri, 24 Sep 2010 12:10:43 GMT https://live.paloaltonetworks.com/t5/general-topics/configuration-of-authentication-profile-via-ldap/m-p/17455#M12746 James 2010-09-24T12:10:43Z