A user group is used to create a logical grouping of users that share the same service policy. Use the Users and Groups page to view, add, edit, or delete local user groups. The local database supports up to 50 user groups.
1. Click Users > Users and Groups.
The Users and Groups window opens. All existing user groups are listed in the Groups table.
2. In the Groups area, click Add to add a user group.
Other options: To edit an entry, click the Edit (pencil) icon. To delete an entry, click the Delete (x) icon. To delete multiple entries, check them and click Delete.
The Group - Add/Edit window opens.
3. In the Group Settings tab, enter the following information:
• Name: Enter the name for the user group.
• Services: Specify the service policy for the user group. You can enable multiple services for a user group.
– Web Login: Choose one of the following web login policies for the user group.
Disable: All members of the user group cannot log into the Configuration Utility through the web browser.
Read Only: All members of the user group can only read the system status after they login. They cannot edit any configuration.
Administrator: All members of the user group have full privilege to set the configuration and read the system status.
NOTE: You cannot disable the web login service or change its service level for the default user group (“admin”).
– SSL VPN: Choose a SSL VPN group policy to enable the SSL VPN service for the user group, or choose Disable to disable it. If you enable SSL VPN, all members of the user group can establish the SSL VPN tunnels based on the selected SSL VPN group policy to securely access your network resources. For more information about the SSL VPN group policy, see Configuring SSL VPN Group Policies, page 311.
– IPsec Remote Access: Click Enable to enable the IPsec Remote Access service for the user group, or click Disable to disable it. If you enable IPsec Remote Access, all members of the user group can establish the VPN tunnels to securely access your network resources.
– Captive Portal: Click Enable to enable the Captive Portal service for the user group, or click Disable to disable it. If you enable Captive Portal, the wireless members of the user group who have authenticated successfully will be directed to a specified web page (portal) before they can access the Internet. This service only applies to ISA550W and ISA570W.
4. In the Membership tab, specify the members of the user group.
• To add a member, select an existing user from the User list and click the right arrow. The members of the user group appear in the Membership list.
• To delete a member from the user group, select the user from the Membership list and click the left arrow.