D-link Dua-2000 User manual

Policy Manager

User Manual

DUA-2000

Ver. 1.0

Business Wireless Solution

Building Networks for People

D-Link DUA-2000 Policy Manager User Manual

Information in this document is subject to change without notice.

Reproduction in any manner whatsoever without the written permission of D-Link Corporation is strictly

forbidden.

Trademarks used in this text: D-Link and the D-Link logo are trademarks of D-Link Corporation; Microsoft and

Windows are registered trademarks of Microsoft Corporation.

Other trademarks and trade names may be used in this document to refer to either the entities claiming the

marks and names or their products. D-Link Corporation disclaims any proprietary interest in trademarks and

trade names other than its own.

FCC Warning

This equipment has been tested and found to comply with the limits for a Class A digital device, pursuant to

Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful

interference when the equipment is operated in a commercial environment. This equipment generates, uses,

and can radiate radio frequency energy and, if not installed and used in accordance with this user’s guide, may

cause harmful interference to radio communications. Operation of this equipment in a residential area is likely

to cause harmful interference in which case the user will be required to correct the interference at his own

expense.

CE Mark Warning

This is a Class A product. In a domestic environment, this product may cause radio interference in which case

the user may be required to take adequate measures.

Warnung!

Dies ist ein Produkt der Klasse A. Im Wohnbereich kann dieses Produkt Funkstoerungen verursachen. In

diesem Fall kann vom Benutzer verlangt werden, angemessene Massnahmen zu ergreifen.

Precaución!

Este es un producto de Clase A. En un entorno doméstico, puede causar interferencias de radio, en cuyo case,

puede requerirse al usuario para que adopte las medidas adecuadas.

Attention!

Ceci est un produit de classe A. Dans un environnement domestique, ce produit pourrait causer des

interférences radio, auquel cas l`utilisateur devrait prendre les mesures adéquates.

Attenzione!

Il presente prodotto appartiene alla classe A. Se utilizzato in ambiente domestico il prodotto può causare

interferenze radio, nel cui caso è possibile che l`utente debba assumere provvedimenti adeguati.

VCCI Warning

May, 2016

D-Link DUA-2000 Policy Manager User Manual

iii

Table of Contents

Table of Contents.................................................................................................................................................................iii

1. Introduction ...................................................................................................................................................................1

Audience............................................................................................................................................................................1

Other Documentation.........................................................................................................................................................1

Conventions.......................................................................................................................................................................1

Notes, Notices, and Cautions ............................................................................................................................................2

2. Product Introduction.....................................................................................................................................................3

3. Hardware Installation....................................................................................................................................................4

Step 1: Unpacking..............................................................................................................................................................4

Packing Contents..........................................................................................................................................................4

Step 2: Server Installation..................................................................................................................................................4

Rack Installation ...........................................................................................................................................................4

Step 3: Powering the Device..............................................................................................................................................4

4. Connecting to the Device.............................................................................................................................................5

Configuring the Network ....................................................................................................................................................5

Logging on to the Web User Interface...............................................................................................................................5

Changing the Default IP Address ......................................................................................................................................6

5. System Overview...........................................................................................................................................................7

6. Network Configuration Example..................................................................................................................................9

Network Requirements ......................................................................................................................................................9

Network Topology............................................................................................................................................................10

Network Configuration .....................................................................................................................................................11

Wireless Controller .....................................................................................................................................................11

Policy Manager...........................................................................................................................................................11

Network Environment .................................................................................................................................................12

7. Status & Monitor..........................................................................................................................................................13

Dashboard........................................................................................................................................................................13

Dashboard ..................................................................................................................................................................13

Network............................................................................................................................................................................14

Interface Utilization .....................................................................................................................................................14

System .............................................................................................................................................................................14

Device Status..............................................................................................................................................................14

Logs............................................................................................................................................................................15

8. Network........................................................................................................................................................................17

Device..............................................................................................................................................................................17

IP Interface..................................................................................................................................................................17

IP Interface...............................................................................................................................................................17

Port Trunking Advance Setting ................................................................................................................................19

RADIUS Client............................................................................................................................................................20

Add RADIUS Server Client ......................................................................................................................................21

Identity Domain................................................................................................................................................................22

Identity Domain...........................................................................................................................................................22

Add Identity / Domain...............................................................................................................................................23

External Server ................................................................................................................................................................24

LDAP...........................................................................................................................................................................24

AD...............................................................................................................................................................................25

POP3 ..........................................................................................................................................................................27

D-Link DUA-2000 Policy Manager User Manual

RADIUS ......................................................................................................................................................................28

9. Policy & Object............................................................................................................................................................31

Policy Rule.......................................................................................................................................................................31

Rule.............................................................................................................................................................................31

Add Policy Rule........................................................................................................................................................32

Client................................................................................................................................................................................34

User Database............................................................................................................................................................34

Group .......................................................................................................................................................................34

Account ....................................................................................................................................................................36

Device Database ........................................................................................................................................................38

Property Group.........................................................................................................................................................38

Device ......................................................................................................................................................................39

Endpoint...........................................................................................................................................................................42

Location Profile...........................................................................................................................................................42

Location Profile ........................................................................................................................................................42

Endpoint List ............................................................................................................................................................43

Endpoint to Location Profile.....................................................................................................................................46

Authorization....................................................................................................................................................................47

Authorization Profile....................................................................................................................................................47

Authorization Profile.................................................................................................................................................47

ACL Profile...............................................................................................................................................................49

ACL Rule..................................................................................................................................................................51

Schedule..........................................................................................................................................................................54

Schedule Profile..........................................................................................................................................................54

Add Schedule Profile................................................................................................................................................55

10. Maintenance.................................................................................................................................................................57

Administration ..................................................................................................................................................................57

System Information.....................................................................................................................................................57

Change Password ......................................................................................................................................................58

System Account..........................................................................................................................................................58

Date and Time ............................................................................................................................................................60

Session.......................................................................................................................................................................62

Management....................................................................................................................................................................63

SNMP..........................................................................................................................................................................63

SNMP v3 User .........................................................................................................................................................63

SNMP Traps.............................................................................................................................................................65

SNMP Host List........................................................................................................................................................66

Access Control List ..................................................................................................................................................68

SNMP Community....................................................................................................................................................69

Telnet / SSH................................................................................................................................................................71

Web Server Configuration ..........................................................................................................................................73

DDP ............................................................................................................................................................................74

System .............................................................................................................................................................................75

Firmware Upgrade......................................................................................................................................................75

Firmware Info ...........................................................................................................................................................75

Firmware Upgrade ...................................................................................................................................................76

Backup / Restore System...........................................................................................................................................78

D-Link DUA-2000 Policy Manager User Manual

Backup System ........................................................................................................................................................78

Restore System........................................................................................................................................................79

Reboot ........................................................................................................................................................................80

HA...............................................................................................................................................................................80

Logs .................................................................................................................................................................................82

Syslog Server .............................................................................................................................................................82

System Logs...............................................................................................................................................................83

Alert.............................................................................................................................................................................84

Email Alert................................................................................................................................................................84

Alert Type.................................................................................................................................................................86

Utilities..............................................................................................................................................................................87

Logo Setting................................................................................................................................................................87

Ping.............................................................................................................................................................................88

11. Appendix A - Technical Specifications.....................................................................................................................89

Capacity...........................................................................................................................................................................89

Hardware Specification....................................................................................................................................................89

Processor and System Memory..................................................................................................................................89

I/O Interface................................................................................................................................................................89

Physical & Environment...................................................................................................................................................89

12. Appendix B – Rack Mount Instructions....................................................................................................................90

D-Link DUA-2000 Policy Manager User Manual

1. Introduction

The manual is organized by the menu layout on the Policy Manager.

Audience

This reference manual is intended for network administrators and other IT networking

professionals responsible for managing the Policy Manager using the Web User Interface

(Web UI). Alternative management interfaces, such as the Command Line Interface (CLI)

are also available but not documented in this manual. This manual is written in a way that

assumes that you already have the experience and knowledge of modern networking

principles.

Other Documentation

The documents below are a further source of information in regards to configuring and

troubleshooting the DUA-2000. All the documents are available either from the CD, bundled

with the Policy Manager, or from the D-Link website. Other documents related to the device

are:

•Quick Installation Guide

Conventions

Convention Description

Boldface Font Indicates a button, a toolbar icon, menu, or menu item. For

example: Open the File menu and choose Cancel. Used for

emphasis. May also indicate system messages or prompts

appearing on screen. For example: You have mail. Bold font

is also used to represent filenames, program names and

commands. For example: use the copy command.

Initial capital letter Indicates a window name. Names of keys on the keyboard

have initial capitals. For example: Click Enter.

Menu Name > Menu

Option Indicates the menu structure. Device > Port > Port

Properties means the Port Properties menu option under

the Port menu option that is located under the Device menu.

Blue Courier Font This convention is used to represent an example of a screen

console display including example entries of CLI command

input with the corresponding output.

D-Link DUA-2000 Policy Manager User Manual

Notes, Notices, and Cautions

Below are examples of the three types of indicators used in this manual. When administering

the Policy Manager using the information in this document, you should pay special attention

to these indicators. Each example below provides an explanatory remark regarding each

type of indicator.

NOTE: A note indicates important information that helps you make better use of

your device.

NOTICE: A notice indicates either potential damage to hardware or loss of data

and tells you how to avoid the problem.

CAUTION: A caution indicates a potential for property damage, personal injury,

or death.

D-Link DUA-2000 Policy Manager User Manual

2. Product Introduction

The trend of Bring Your Own Device (BYOD) is a new challenge for network administrators

and managers. Many companies that allow employees to use their own devices expect to

see improvements in performance and productivity, however BYOD brings its own

challenges to do with network security and control of sensitive information.

The D-Link DUA-2000 Policy Sever is the first secure access control server in D-Link’s

product portfolio. It is a fully-featured Policy Manager capable of assigning permissions

based on who you are, where you are, when you connect, the type of device and the device

ownership. Policy enforcement is implemented through the network layer, removing the

need for client software and ensuring compatibility with a wide range of devices.

The DUA-2000 provides multiple authentication options and can integrate with your existing

network. It has a high level of integration with existing D-Link products, such as Unified APs,

Wireless Switch/Controllers, and Layer 2 and 3 switches, providing a seamless user

experience. The DUA-2000 meets the requirement for enterprise BYOD management.

D-Link DUA-2000 Policy Manager User Manual

3. Hardware Installation

This chapter provides unpacking and installation information for the DUA-2000 Policy

Manager.

Step 1: Unpacking

Open the shipping carton and carefully unpack its contents. Please consult the list below to

make sure all items are present and undamaged. If any item is missing or damaged, please

contact your local D-Link reseller.

Packing Contents

•1 x DUA-2000 Policy Manager

•1 x Master CD

•1 x Quick Installation Guide

•1 x DB9-to-RS232 Console Cable

•1 x Power cord

•1 x Device Mounting Bracket Kit

•1 x CAT5e Ethernet cable (1.2m straight-through)

Step 2: Server Installation

For safe server installation and operation, it is recommended that you:

•Visually inspect the power cord to see that it is secured fully to the AC power

connector.

•Make sure that there is proper heat dissipation and adequate ventilation around the

server.

•Do not place heavy objects on the server.

Rack Installation

The Policy Manager can be mounted in an EIA standard size 19-inch rack, which can be

placed in a server room with other equipment. To install, attach the mounting brackets to the

Policy Manager’s side panels (one on each side) and secure them with the screws provided.

Then, use the screws provided with the server rack to mount the Policy Manager in the rack.

NOTICE: Please refer to Appendix B – Rack Mount Instructions for safety

instructions on rack mounting the Policy Manager.

Step 3: Powering the Device

Once the Policy Manager has been racked, it is then possible to power the device. Connect

the AC power cord to the rear of the Policy Manager and to an electrical outlet.

NOTICE: It is recommended that the Policy Manager be connected to an

Uninterruptible Power Supply (UPS) to prevent data loss and damage to

hardware in the event of an unexpected power outage.

D-Link DUA-2000 Policy Manager User Manual

Connecting to the Device

There are several methods of connecting to the Policy Manager, including the Web User

Interface (Web UI), SNMP and command-line access (Telnet / SSH / Console). Here we will

document the most common method of access, the Web User Interface. When it is possible

to manage the device, further configuration can be done to the Wireless Controller to

support features such as captive portal. This is detailed later on in the document as a

configuration example.

Configuring the Network

The Policy Manager only needs to be reachable from the Wireless Controller to support

authentication, authorization and accounting. This can either be in the same management

subnet, or another subnet altogether. Connect to the Policy Manager using its default IP

address and change this to be in line with your own network policies.

NOTE: The default IP address is 10.90.90.90, with a subnet mask of 255.0.0.0.

Logging on to the Web User Interface

To access the Web UI, open a web browser on a management PC and enter the Policy

Manager’s IP address.

NOTE: Please make sure that the device is reachable via ICMP Ping before

continuing with the instructions.

NOTE: The default login details are a username of ‘admin’ and a password of

‘admin’.

You will see the device’s dashboard when you have successfully connected to the Policy

Manager.

Table of contents

Popular Extender manuals by other brands

Paugge

Paugge ENT-EXT20B user manual

REIGN

REIGN XRE-100 manual

Lindy

Lindy 42805 user manual

Digi

Digi ConnectPort Network Device user manual

British General

British General N300 instructions

VPI

VPI ST-WLHDMI-L-30M Installation and operation manual

Gefen

Gefen EXT-DIGAUD-141 user manual

AMX

AMX netlinx NXC-MPE Dimensional drawing

SY HDBT-60T installation guide

Appsys ProAudio

Appsys ProAudio ADX-16 user manual

Atlona

Atlona RS232 user manual

IDK

IDK OPF-TH1000-A user guide

Enable-IT

Enable-IT 824WP quick start guide

Worx

Worx Landroid RadioLink WA0864 Get started

TP-Link

TP-Link TL-WA730RE user guide

Camplex

Camplex CMX-HDMI-SFPL user manual

SC&T

SC&T HE03-4K user manual

Samsung

Samsung SCS-26UC4 user guide

D-Link DUA-2000 User manual

Popular Extender manuals by other brands