Importing Local Users from LDAP

You can configure local users on the SonicWall by retrieving the user names from yoSonicWallur LDAP server. The Import from LDAP button launches a dialog box containing the list of user names available for import to the SonicWall.

Having users on the SonicWall with the same name as existing LDAP/AD users allows SonicWall user privileges to be granted upon successful LDAP authentication.

The list of users read from the LDAP server can be quite long, and you will probably only want to import a small number of them. A Remove from list button is provided, along with several methods of selecting unwanted users.You can use these options to reduce the list to a manageable size and then select the users to import.

To import users from the LDAP server:

Navigate to the Users > Settings page.

From the User Authentication method drop-down menu, select either LDAP or LDAP + Local Users. The page changes slightly.

Click the Configure LDAP button. The LDAP Configuration dialog displays.

Click the Users & Groups tab.

Optionally, select Allow only users listed locally.

To import users from the LDAP server, click the Import Users button. The LDAP Import Users dialog displays.

In the LDAP Import Users dialog, you can select individual users or select all users. To select all users in the list, select the Select/deselect all check box at the top of the list. To clear all selections, click it again.

To remove one or more users from the displayed list, select one of the following options near the bottom of the page, and then click Remove from list:

•

To remove the users whose checkboxes you have selected, select the All selected users radio button.

•

To remove certain users on the basis of name, description, or location:

Select the Any user whose <field1> contains <field2> radio button.

From the drop-down menu, select:

•

name – The user name displayed in the left column of the list.

•

description – The description displayed to the right of the user name (not present for all users).

•

location – The location of the user object in the LDAP directory. The location, along with the full user name, is displayed by a mouse-over on a user name, as shown in the LDAP Import Users dialog shown in Step 6.

Enter the value to match into the second field.

For example, you might want to remove accounts that are marked as “Disabled” in their descriptions. In this case, select description in the first field and type Disabled in the second field. The second field is case-sensitive, so if you typed disabled you would prune out a different set of users.

•

To remove certain users from the list on the basis of their location in the LDAP directory, select the All users <field1> <field2> radio button. In the first field, select either at or at or under from the drop-down menu. In the second field, select the LDAP directory location from the drop-down menu.

NOTE: It is not necessary to remove users from the list not to import them. Doing so simply makes it easier to see those remaining in the list. If you choose not to do this, you can jump straight to Step 11.

Repeat Step 8 to prune out additional users, until you have a manageable list to select from for import.

To undo all changes made to the list of users:

Click Undo. A confirmation message displays.

Click OK.

When finished pruning out as many unwanted accounts as possible with the Remove from list options, use the checkboxes in the list to select the accounts to import.

Click Save selected.

Click OK.

Configure the other tabs as necessary.

Click Apply.

Click Accept. A confirmation message displays.

Click OK.