Versionen im Vergleich

Alte Version 5

changes.mady.by.user LANCOM Redaktion

Gespeichert am

verglichen mit

Neue Version 6

changes.mady.by.user LANCOM Redaktion

Gespeichert am

Schlüssel

  • Diese Zeile wurde hinzugefügt.
  • Diese Zeile wurde entfernt.
  • Formatierung wurde geändert.

...

1.1.1) In the LMC, go to the Networks menu and click the network that the LTA client should log in to (in this example INTRANET).

1.1.2) In the Overview  Overview, click Edit network.

1.1.3) Modify the following parameters and then click Save:

...

1.2) Activate LTA:

1.2.1) In the Security  menumenu, go to the the LANCOM Trusted Access tab and click the Activate LTA slider.

...

  • Name: Enter a descriptive name for the identity provider as entered into the LMC.
  • Domains: Use the Domains field to enter the domain you are using (in this example mydomain.com).
Info

The configuration is not yet complete as the cannot be saved at this point as the IdP metadata URL still has to be entered. This is read out from Entra ID in step 2.2.8 and stored in the LMC in step 3.1.1.

...

  • TXT resource record: Enter this as the TXT resource record into in the account of your DynDNS provider for the domain.
  • LMC Entity URL: Enter this into Entra ID as the Identifier (Entity ID) in step 2.2.4.
  • Reply URL: Enter this into Entra ID as the Reply URL (Assertion Consumer Service URL) in step 2.2.4.

...

Hinweis

The application password  must be copied in this step. The password will subsequently be obfuscated. In this case of problems, the password must be deleted and a new one created.

...

2.5.4) Select the permissions Group.Read.All and then click Add permissions

Info

You can find the authorization permission directly by entering the string string Group.Read. into the search box.

...

  • Name: Enter a descriptive name for the connection target (in this example Web-Server).
  • Hostname / IPv4 address / CIDR notation: Enter a DNS name or the IP address of the connection target (in this example 10.0.0.250). Alternatively, you can provide access to an entire network by entering the network address in CIDR notation (e.g. 10.0.0.0/8).
  • Protocol: Select the communications protocolprotocol (in this example TCP).
    • The following protocols are available:
      • TCP
      • UDP
      • ICMP
      • AH
      • ESP
      • GRE
      • TCP+UDP
      • All protocols
  • Port: Enter the ports for the communications (in this example 80 and 443). Multiple ports can be separated by a comma (e.g. 80,443). Port ranges can be entered with a hyphen (e.g. 5060-5061).


3.3) Authorization profiles:

...