¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È - SE̼¤Î·õ -

¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È¤Î»î¸³Âкö¥µ¥¤¥È¤Ç¤¹¡£¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È»î¸³¤Î¹ç³ÊÂÎ
¸³ÃÌ¡¢¹ç³Ê¤Î¥³¥Ä¡¢²áµîÌä²òÀâ¡¢´ðÁÃÃμ±¤Ê¤É¤Î¾ðÊó¤ò·ÇºÜ¤·¤Þ¤¹¡£ ¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È
»î¸³Âкö¤Ê¤éº¸Ìç»êÊö¤ÎºÇ¤â¾Ü¤·¤¤²áµîÌä²òÀâ¡Ö¥Í¥¹¥Ú¡×¥·¥ê¡¼¥º¡Êµ»½ÑɾÏÀ¼Ò¡Ë¤Ç¡ª¡ª
¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È»î¸³¤Ë¹ç³Ê¤¹¤ë¤È¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤Ë´Ø¤¹¤ëÃμ±¤äµ»½Ñ¤À¤±¤Ç¤Ê¤¯¡¢ÆÉ²òÎϤäʸ¾ÏÎϤâ¿È¤Ë¤Ä¤­¤Þ¤¹¡£
¤µ¤é¤Ë¡¢¤³¤Î»î¸³¤Ë¹ç³Ê¤Ç¤­¤¿¤È¤¤¤¦¼«¿®¤òÆÀ¤ë¤³¤È¤¬¤Ç¤­¤Þ¤¹¡£

¥«¥Æ¥´¥ê¡§10.¥¢¥×¥ê¥±¡¼¥·¥ç¥óÁØ¡ÊL5¡ÁL7¡Ë > 10.7 ³Æ¼ï¥×¥í¥È¥³¥ë

LDAP¡ÊLightweight Directory Access Protocol¡Ë¤Ç¤¹¡£
ǧ¾Ú¤Î¥×¥í¥È¥³¥ë¤Ç¤Ï¡¢Radius¥×¥í¥È¥³¥ë¡¢ActiveDirectory¡¢LDAP¤Î3¤Ä¤¬¤è¤¯ÍøÍѤµ¤ì¤Þ¤¹¡£
¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È¤òÌܻؤ¹½÷À­SE¤¢¤ì¡©

Radius¥µ¡¼¥Ð¤âAD¥µ¡¼¥Ð¤â¡¢¤É¤Á¤é¤â¥æ¡¼¥¶¾ðÊó¤ò»ý¤Ã¤¿Ç§¾Ú¥µ¡¼¥Ð¤Ç¤¹¤è¤Í¡£
LDAP¤âƱ¤¸¤Ç¤¹¤«¡©
¤Ï¤¤¡¢¤½¤¦¹Í¤¨¤Æ¤¯¤À¤µ¤¤¡£Radius¤Ë¤·¤Æ¤â¤½¤¦¤Ç¤¹¤¬¡¢Radius¤Ï¥×¥í¥È¥³¥ë¤Ç¤¢¤ê¡¢Ç§¾Ú¥µ¡¼¥Ð¤ÏRadius¥µ¡¼¥Ð¤È¸Æ¤Ð¤ì¤Þ¤¹¡£LDAP¤âƱ¤¸¤Ç¡¢LDAP¤Ï¥×¥í¥È¥³¥ë¤Ç¤¹¤¬¡¢LDAP¥µ¡¼¥Ð¤È¤¤¤¦¤È¡¢¥æ¡¼¥¶¾ðÊó¤ò»ý¤Ã¤¿Ç§¾Ú¥µ¡¼¥Ð¤ò»Ø¤·¤Þ¤¹¡£
¢¨AD¤Ë´Ø¤·¤Æ¤Ï¡¢¥×¥í¥È¥³¥ë¤ÏNTLMv2¤Ê¤É¤ò»È¤¤¤Þ¤¹¡£
¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È¤òÌܻؤ¹½÷À­SE¥Ï¥Æ¥Ê 

RADIUS¥µ¡¼¥Ð¤ÈLDAP¥µ¡¼¥Ð¤Î»È¤¤Ê¬¤±¤Ï¤É¤¦¤¹¤ë¤Î¤Ç¤¹¤«¡©
³°Éô¤«¤é¤Î¥ê¥â¡¼¥È¥¢¥¯¥»¥¹¤ä̵ÀþLAN¤Îǧ¾Ú¤Ê¤É¤Î¥æ¡¼¥¶Ç§¾Ú¤Ç¤ÏRADIUS¤¬ÍøÍѤµ¤ì¤Þ¤¹¡£°ìÊý¡¢LDAP¥µ¡¼¥Ð¤Ï¡¢¥Ç¥£¥ì¥¯¥È¥ê¥µ¡¼¥Ó¥¹¤ÇÍøÍѤµ¤ì¤Þ¤¹¡£¥Ç¥£¥ì¥¯¥È¥ê¥µ¡¼¥Ó¥¹¤Ç¤¹¤«¤é¡¢³¬Áع½Â¤¤Ç´ÉÍý¤µ¤ì¤ë¼Ò°÷¤Î¾ðÊ󤪤è¤ÓÉô½ð¤ä¥¢¥¯¥»¥¹¸¢¤Ê¤É¡¢Â¿¤¯¤Î¾ðÊó¤ò´ÉÍý¤Ç¤­¤Þ¤¹¡£¤½¤ì¤é¤ÎÊ£»¨¤Ê¼Ò°÷¤Î°À­¾ðÊó¤ò´ÉÍý¤¹¤ë¾ì¹ç¤Ë¡¢LDAP¥µ¡¼¥Ð¤ª¤è¤ÓLDAP¤Î¥×¥í¥È¥³¥ë¤¬ÍøÍѤµ¤ì¤Þ¤¹¡£

²áµîÌä¡ÊH22½©SC¸á¸å­¶Ìä2¡Ë¤ò¤ß¤Æ¤ß¤Þ¤·¤ç¤¦¡£
 LDAP¤Î¥¢¥«¥¦¥ó¥È¾ðÊó¤Ç¤Ï,  inetOrgPerson¤È¤¤¤Ã¤¿¥ª¥Ö¥¸¥¨¥¯¥È¥¯¥é¥¹¤Ë¤è¤Ã¤ÆÁÈ¿¥¤ÎÍøÍѼԤξðÊó¤ò´ÉÍý¤¹¤ëɸ½àŪ¤Ê[¡¡b¡¡]¤òÍѤ¤¤Æ¤¤¤ë¡£Î㤨¤Ð,À½Éʳ«È¯Éô¤Î¥¹¥º¥­¥¿¥í¥¦»á¤¬¼ÒÆâ¤ÇÍøÍѤ¹¤ëLDAPÍѤΥ¢¥«¥¦¥ó¥È¾ðÊó¤ò[¡¡c¡¡]¤Ë¤è¤Ã¤Æ¥Æ¥­¥¹¥È·Á¼°¤Ç¼¨¤¹¤È,¿Þ7¤È¤Ê¤ë¡£
dn: uid=suzuki,ou=seihin-kaihatsu,dc=a-companyen: Taro Suzuki
sn: Suzuki
objectclass: top
objectclass: person
objectclass: organizationalPerson
objectclass: inetOrgPerson
ou:À½Éʳ«È¯Éô
teleDhonenumber:03-XXXX-5555
c=com
¿Þ7 LDAP¤Ë¤ª¤±¤ë¥¹¥º¥­¥¿¥í¥¦»á¤Î¥¢¥«¥¦¥ó¥È¾ðÊó(È´¿è)

¤µ¤Æ¡¢¶õÍó¤Ç¤¹¤¬¡¢°Ê²¼¤¬Æþ¤ê¤Þ¤¹¡£
b¡¡¥¹¥­¡¼¥Þ
c¡¡LDIF
¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È¤òÌܻؤ¹½÷À­SE¤¢¤ì¡©¡¡

LDAP¤ÎÄÌ¿®¤Ï°Å¹æ²½¤µ¤ì¤Æ¤¤¤Þ¤¹¤«¡©




¤¤¤¨¡¢¤Ï°Å¹æ²½¤µ¤ì¤Æ¤¤¤Ê¤¤¤Î¤Ç¡¢°Å¹æ²½¤¹¤ë¤Ë¤ÏLDAP over TLS¤ò»È¤¤¤Þ¤¹¡£
²áµîÌä¡ÊH21½ÕSC¸áÁ°­¶¡Ë¤ò¤ß¤Æ¤ß¤Þ¤·¤ç¤¦¡£
Ìä10 ÄÌ¿®¤Î°Å¹æ²½¤Ë´Ø¤¹¤ëµ­½Ò¤Î¤¦¤Á,ŬÀڤʤâ¤Î¤Ï¤É¤ì¤«¡£
¥¢ IPsec¤Î¥È¥é¥ó¥¹¥Ý¡¼¥È¥â¡¼¥É¤Ç¤Ï,¥²¡¼¥È¥¦¥§¥¤´Ö¤ÎÄÌ¿®·ÐÏ©¾å¤À¤±¤Ç¤Ï¤Ê¤¯,ȯ¿®¥Û¥¹¥È¤È¼õ¿®¥Û¥¹¥È¤È¤Î´Ö¤ÎÁ´·ÐÏ©¾å¤Ç¥á¥Ã¥»¡¼¥¸¤¬°Å¹æ²½¤µ¤ì¤ë¡£
¥¤ LDAP ¥¯¥é¥¤¥¢¥ó¥È¤¬LDAP¥µ¡¼¥Ð¤ËÀÜÅý¤¹¤ë¤È¤­,¤½¤ÎÄÌ¿®ÆâÍÆ¤Ï°Å¹æ²½¤¹¤ë¤³¤È¤¬¤Ç¤­¤Ê¤¤¡£
¥¦ S/MME¤Ç°Å¹æ²½¤·¤¿ÅŻҥ᡼¥ë¤Ï,¼õ¿®Â¦¤Î¥á¡¼¥ë¥µ¡¼¥ÐÆâ¤Ë³ÊǼ¤µ¤ì¤Æ¤¤¤ë´Ö¤Ï,¥á¡¼¥ë´ÉÍý¼Ô¤¬Ê¿Ê¸¤È¤·¤Æ¸«¤ë¤³¤È¤¬¤Ç¤­¤ë¡£
¥¨ SSL¤ò»ÈÍѤ¹¤ë¤È,°Å¹æ²½¤µ¤ì¤¿HTMLʸ½ñ¤Ï¥Ö¥é¥¦¥¶¤Ç¥­¥ã¥Ã¥·¥å¤Î̵ͭ¤¬ÀßÄê¤Ç¤­¤º,¥Ç¥£¥¹¥¯Æâ¤Ëɬ¤ºÊݸ¤µ¤ì¤ë¡£
¢ÍÀµ²ò¤Ï¥¢
¥¤¤Ë´Ø¤·¤Æ¤Ï¡¢LDAP over TLS¤ò»È¤¦¤³¤È¤ÇÄÌ¿®ÆâÍÆ¤ò°Å¹æ²½¤¹¤ë¤³¤È¤¬¤Ç¤­¤Þ¤¹¡£

NTP(Network Time Protocol)¤Ï¡¢¸ÀÍÕ¤ÎÄ̤ꡢ¥Í¥Ã¥È¥ï¡¼¥¯(Network)¾å¤Îµ¡´ï¤Î»þ¹ï(Time)¤òÀµ³Î¤Ë°Ý»ý¤¹¤ë¤¿¤á¤Î¥×¥í¥È¥³¥ë¡ÊProtocol)¤Ç¤¹¡£

¤Þ¤º¤Ï²áµîÌä¡ÊH25½ÕSC¸á¸å­¶Ìä2¡Ë¤ò¸«¤Æ¤ß¤è¤¦¡£
³°ÉôDNS¥µ¡¼¥Ð¤Ï¡¤¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î»þ¹ï¥µ¡¼¥Ð¤È¤Î´Ö¤Ç¡¤[¡¡a¡¡]¤òÍѤ¤¤Æ»þ¹ïƱ´ü¤ò¹Ô¤Ã¤Æ¤¤¤ë¡£FWµÚ¤Ó¾ðÊó¥·¥¹¥Æ¥à¤Î³Æ¥µ¡¼¥Ð¤Ï¡¤³°ÉôDNS¥µ¡¼¥Ð¤È¤Î´Ö¤Ç¡¤[¡¡a¡¡]¤òÍѤ¤¤Æ»þ¹ïƱ´ü¤ò¹Ô¤Ã¤Æ¤¤¤ë¡£

¶õÍó¤ËÅö¤Æ¤Ï¤Þ¤ë¤Î¤¬NTP¤Ç¤¢¤ë¡£

NTP¤Ë´Ø¤·¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥Ú¥·¥ã¥ê¥¹¥È»î¸³¤Î²áµîÌä¡ÊH19NW¸áÁ°1Ìä3¡Ë¤Ç¾Ü¤·¤¯Ìä¤ï¤ì¤¿¡£¤½¤ÎÌäÂê¤ò¸«¤Æ¤ß¤è¤¦¡£
¡ÌNTP¤Î»ÅÁȤߡÍ
¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Îµ¡´ï¤Î»þ¹ï¤òÀµ³Î¤Ë°Ý»ý¤¹¤ë¤¿¤á¤Ë,NTP(Network TimeProtocol)¤ò»ÈÍѤ¹¤ë¡£NTP¤Ï,¼¡¤Î2ÅÀ¤òÁ°Äó¤ËÀ߷פµ¤ì¤Æ¤¤¤ë¡£
¡¦¥Í¥Ã¥È¥ï¡¼¥¯¾å¤ËÀµ³Î¤Ê»þ¹ï¾ðÊó¤òÊÝ»ý¤¹¤ëµ¡´ï¤¬¤¢¤ë¡£
¡¦»þ¹ï¤òƱ´ü¤µ¤»¤ëµ¡´ï´Ö¤ÎÄÌ¿®¤Ç,Í×µáÅÅʸ¤È±þÅúÅÅʸ¤¬¥Í¥Ã¥È¥ï¡¼¥¯Æâ¤ÇÃٱ䤹¤ë»þ´Ö¤¬Åù¤·¤¤¡£
¡¡NTP¤Ï,stratum¤È¸Æ¤Ð¤ì¤ë³¬Áع½Â¤¤ò¤â¤Á,ºÇ¾å°Ì¤Îµ¡´ï¤¬,¸¶»Ò»þ·×¤äɸ½àÅÅÇÈ,[¡¡a¡¡]Íѿ͹©±ÒÀ±¤Ê¤É¤ÎÀµ³Î¤Ê»þ¹ï¸»¤«¤é»þ¹ï¤ò¼èÆÀ¤·,²¼°Ì¤Îµ¡´ï¤ËÄ󶡤¹¤ë¡£ÃÙ±ä»þ´Ö¤Ë¤Ð¤é¤Ä¤­¤¬¤¢¤ë¤È,»þ¹ï¤ÎÀºÅ٤˱ƶÁ¤¹¤ë¤Î¤Ç,»þ¹ï¤òƱ´ü¤µ¤»¤ëµ¡´ï¤Ï­¡¥Í¥Ã¥È¥ï¡¼¥¯Åª¤Ë¶á¤¤Êý¤¬¤è¤¤¡£

¡ÊÃæÎ¬¡Ë

¡Ì¥¿¥¤¥à¥µ¡¼¥Ð¡Í
¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Ë¤Ï¥¿¥¤¥à¥µ¡¼¥Ð¤¬¸ø³«¤µ¤ì¤Æ¤¤¤ë¤Î¤Ç,¤½¤³¤«¤é»þ¹ï¤ò¼èÆÀ¤¹¤ë¤³¤È¤¬²Äǽ¤Ç¤¢¤ë¡£¤½¤Î¾ì¹ç,­¢»þ¹ï¤ò¼èÆÀ¤¹¤ëµ¡´ï¤ò¸ÂÄꤷ,¤½¤Î¼èÆÀ¤·¤¿»þ¹ï¤òÁÈ¿¥Æâ¤ËŸ³«¤¹¤ë¹½À®¤¬¿ä¾©¤µ¤ì¤Æ¤¤¤ë¡£¤³¤Î¤è¤¦¤Ë,¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥¿¥¤¥à¥µ¡¼¥Ð¤òÍøÍѤ·¤¿¤È¤·¤Æ¤â,¼ÒÆâ¤Ë¥¿¥¤¥à¥µ¡¼¥Ð¤òÀßÃÖ¤·¤¿¤ê,   FW¤ÎÀßÄê¤òÊѹ¹¤·¤¿¤ê¤·¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¤Î¤Ç,Àµ³Î¤Ê»þ¹ï¸»¤ÈƱ´ü¤¹¤ë¥¿¥¤¥à¥µ¡¼¥Ð¤ò¼ÒÆâ¤ËÀßÃÖ¤·¤¿Êý¤¬¤è¤¤¡£¤³¤Î·ÁÂÖ¤Ï,­£²ÄÍÑÀ­¤ÎÌ̤Ǥâ,¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥¿¥¤¥à¥µ¡¼¥Ð¤òÍøÍѤ¹¤ë¤è¤êÍ¥¤ì¤Æ¤¤¤ë¡£

ÀßÌä1 ËÜÊ¸Ãæ¤Î¡Î¡¡a¡¡¡Ï¤ËÆþ¤ì¤ëŬÀڤʻú¶ç¤òÅú¤¨¤è¡£
ÀßÌä2 NTP¤Ç»ÈÍѤµ¤ì¤ëɸ½à»þ¤ò²òÅú·²¤ÎÃæ¤«¤éÁª¤Ó,µ­¹æ¤ÇÅú¤¨¤è¡£
¡¡²òÅú·²
¥¢ DST    ¥¤ GMT    ¥¦ JST    ¥¨ TAI    ¥ª UTC
ÀßÌä3 NTP¤Îưºî¤Ë¤Ä¤¤¤Æ,(1)~(3)¤ËÅú¤¨¤è¡£
(1)ËÜÊ¸Ãæ¤Î²¼Àþ­¡¤Ë¼¨¤¹¡É¥Í¥Ã¥È¥ï¡¼¥¯Åª¤Ë¶á¤¤¡É¤È¤Ï,¤É¤Î¤è¤¦¤Ê¾õÂÖ¤ò°ÕÌ£¤¹¤ë¤«¡£20»ú°ÊÆâ¤Ç¶ñÂÎŪ¤Ë½Ò¤Ù¤è¡£
(2)ËÜÊ¸Ãæ¤Î²¼Àþ­¢¤Ë¼¨¤¹¹½À®¤ò¤È¤ë¤³¤È¤Ç,¤É¤Î¤è¤¦¤ÊÌäÂê¤ÎȯÀ¸¤ò²óÈò¤Ç¤­¤ë¤«¡£40»ú°ÊÆâ¤Ç½Ò¤Ù¤è¡£
(3)¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥¿¥¤¥à¥µ¡¼¥Ð¤òÍøÍѤ¹¤ë¾ì¹ç,ËÜÊ¸Ãæ¤Î²¼Àþ­£¤Ë¼¨¤¹²ÄÍÑÀ­¤ÎÌ̤Ç,Îô¤Ã¤Æ¤·¤Þ¤¦ÅÀ¤Ï²¿¤«¡£25»ú°ÊÆâ¤Ç½Ò¤Ù¤è¡£

¤³¤ÎÌäÂê¤ÎºÎÅÀ¹Öɾ¤òÆÉ¤à¤È¡¢NTP¤ÎÌÜŪ¤Ê¤É¤¬´Êñ¤ËÍý²ò¤Ç¤­¤ë¤Î¤Ç°úÍѤ¹¤ë¡£
ÍÍ¡¹¤Ê¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ç¥¿¥¤¥à¥¹¥¿¥ó¥×¤¬ÍøÍѤµ¤ì¤Æ¤¤¤ë¤¬,»þ¹ï¤¬¤º¤ì¤Æ¤·¤Þ¤¦¤È,¥Õ¥¡¥¤¥ë¤ä¥Ç¡¼¥¿¥Ù¡¼¥¹¤ò¶¦Í­¤·¤¿¾ì¹ç¤ËÉÔ¶ñ¹ç¤¬È¯À¸¤·¤¿¤ê,¥·¥¹¥Æ¥à´ÉÍý¤Ç½ÅÍ×¤Ê¥í¥°¤¬³èÍѤǤ­¤Ê¤¯¤Ê¤Ã¤¿¤ê¤¹¤ë¡£¤½¤¦¤·¤¿¤³¤È¤«¤é,Àµ³Î¤Ê»þ¹ïÀßÄê¤Ø¤ÎÍ׵᤬¹â¤Þ¤Ã¤Æ¤¤¤ë¡£
ËÜÌä¤Ç¤Ï,Àµ³Î¤Ê»þ¹ï¤ò°Ý»ý¤¹¤ë¤¿¤á¤Î»ÅÁȤߤǤ¢¤ëNTP(Network Time Protocol)¤òÂêºà¤È¤·¤Æ,¥Í¥Ã¥È¥ï¡¼¥¯¥¨¥ó¥¸¥Ë¥¢¤ËÃΤäƤª¤¤¤Æ¤Û¤·¤¤´ðËÜŪ¤ÊÃ챤È,¥¿¥¤¥à¥µ¡¼¥ÐƳÆþ¤òÄ̤¸¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤ò¹½ÃÛ¤¹¤ëǽÎϤˤĤ¤¤ÆÌ䤦¡£

»î¸³¥»¥ó¥¿¡¼¤Î²òÅúÎã¤Ï°Ê²¼¤Ç¤¢¤ë¡£
ÀßÌä1  a GPS
ÀßÌä2  ¥ª
ÀßÌä3 (1) ¡¦·Ðͳ¤¹¤ë¥Í¥Ã¥È¥ï¡¼¥¯µ¡´ï¤¬¾¯¤Ê¤¤¾õÂÖ
¡¦ÅÁÁ÷ÃÙ±ä»þ´Ö¤¬¾®¤µ¤¤¾õÂÖ
 (2) ÆÃÄê¤Î¥µ¡¼¥Ð¤ËÉé²Ù¤¬½¸Ã椷,³Î¼Â¤Ë»þ¹ï¤ò¼èÆÀ¤¹¤ë¤³¤È¤¬º¤Æñ¤Ë¤Ê¤Ã¤Æ¤·¤Þ¤¦ÌäÂê
 (3) ¥¿¥¤¥à¥µ¡¼¥Ð¥Ø¤ÎÀܳÀ­¤¬Êݾڤµ¤ì¤Ê¤¤ÅÀ

RADIUS¡ÊRemote Authentication Dial In User Service¡Ë¤È¤Ï
ǧ¾Ú¥µ¡¼¥Ð¤Ëǧ¾Ú¾ðÊó¤òÌ䤤¹ç¤ï¤»¤ë¤È¤­¤ËÍøÍѤ¹¤ë¥×¥í¥È¥³¥ë¤Ç¤¹¡£
ÍøÍÑ¥·¡¼¥ó¤È¤·¤Æ¤Ï¡¢¥À¥¤¥ä¥ë¥¢¥Ã¥×¤Îǧ¾Ú¡¢ÌµÀþLAN¤Îǧ¾Ú¥µ¡¼¥Ð¡¢SSL-VPNÁõÃÖ¡¢¤Ê¤É¤¬¤¢¤ê¤Þ¤¹¡£

¹½À®Îã
Åоì¿Íʪ¤Ï°Ê²¼¤Î3¤Ä¤Ç¤¢¤ë¡£
ÍøÍѼÔ
RADIUS¥¯¥é¥¤¥¢¥ó¥È
RADIUS¥µ¡¼¥Ð

Îã¤È¤·¤Æ¡¢°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë
PC¡¡----¢ª¡¡SSLVPNÁõÃÖ¡¡----¢ª¡¡RADIUS¥µ¡¼¥Ð
PC¡¡----¢ª¡¡AP¡¡-----¢ª¡¡RADIUS¥µ¡¼¥Ð

SSL-VPNÁõÃÖ¤äAP¤ÏNAS¡ÊNetwork Access Server¡Ë¤È¸Æ¤Ð¤ì¤ë¡£
¤Þ¤¿¡¢RADIUS¥µ¡¼¥Ð¤ËÂФ·¤ÆRADIUS¥¯¥é¥¤¥¢¥ó¥È¤È¤·¤ÆÆ¯¤¯¡£
¤Ä¤Þ¤ê¡¢RADIUS¥µ¡¼¥Ð¤ËÂФ·¤Æ¡¢ID¤ä¥Ñ¥¹¥ï¡¼¥É¾ðÊó¤òÁ÷¿®¤¹¤ë¡£

¤½¤â¤½¤â¡¢¤Ê¤¼RADIUS¤¬É¬ÍפʤΤ«
1 
¤¿¤È¤¨¤Ð¡¢SSL-VPNÁõÃ֤ˤª¤¤¤Æ¡¢RADIUS¤ò»È¤ï¤Ê¤¯¤Æ¤âǧ¾Ú¤Ï¤Ç¤­¤ë¡£SSL-VPNÁõÃ֤˥桼¥¶¾ðÊó¤òÅÐÏ¿¤¹¤ì¤Ð¤¤¤«¤é¤Ç¤¹¡£

¤Ê¤¼RADIUS¤¬É¬Íפʤó¤Ç¤¹¤«?
ÌÜŪ¤Ï°Ê²¼¤Ç¤¢¤ë¡£
­¡¥æ¡¼¥¶¤Î°ì¸µ´ÉÍý¤Î¤¿¤á¡£Ê£¿ô¤Îǧ¾Ú¤ò¤¹¤ë¾ì¹ç¡¢¤½¤ì¤¾¤ì¤ÎÁõÃ֤ǥ桼¥¶¤ò´ÉÍý¤¹¤ëɬÍפ¬¤¢¤ë¡£
­¢¾åµ­¤Ë´ØÏ¢¤¹¤ë¤¬¡¢´ÉÍý¤ÎÍÆ°×À­¡£°ì¸µ´ÉÍý¤Ê¤Î¤Ç¥í¥°¤Î½¸Ìó¡¢ÍøÍѾõ¶·¤Î´ÉÍý¤Ê¤É¤¬¹Ô¤¤¤ä¤¹¤¤¡£
­£¹âÅ٤ʵ¡Ç½¤ò»ý¤Ä¤³¤È¤¬Â¿¤¤¡£¤¿¤È¤¨¤Ð¡¢EAP-TLSÂбþ¤Ê¤É

²áµîÌä¡ÊH25SC½Õ¸áÁ°2Ìä7¡Ë¤ò²ò¤¤¤Æ¤ß¤è¤¦
Ìä7¡¡ÌµÀþLAN´Ä¶­¤ËÊ£¿ôÂæ¤ÎPC,Ê£¿ô¤Î¥¢¥¯¥»¥¹¥Ý¥¤¥ó¥ÈµÚ¤ÓÍøÍѼÔǧ¾Ú¾ðÊó¤ò´ÉÍý¤¹¤ë1Âæ¤Î¥µ¡¼¥Ð¤¬¤¢¤ë¡£ÍøÍѼÔǧ¾Ú¤È¥¢¥¯¥»¥¹À©¸æ¤ËIEEE 802.1X¤ÈRADIUS¤òÍøÍѤ¹¤ë¾ì¹ç¤Î¼ÂÁõÊýË¡¤Ï¤É¤ì¤«¡£
¥¢¡¡PC¤Ë¤ÏIEEE 802.1X¤Î¥µ¥×¥ê¥«¥ó¥È¤ò¼ÂÁõ¤·, RADIUS¥¯¥é¥¤¥¢¥ó¥È¤Îµ¡Ç½¤ò¤â¤¿¤»¤ë¡£
¥¤¡¡¥¢¥¯¥»¥¹¥Ý¥¤¥ó¥È¤Ë¤ÏIEEE 802.1X¤Î¥ª¡¼¥»¥ó¥Æ¥£¥±¡¼¥¿¤ò¼ÂÁõ¤·¡¤RADIUS¥¯¥é¥¤¥¢¥ó¥È¤Îµ¡Ç½¤ò¤â¤¿¤»¤ë¡£
¥¦¡¡¥¢¥¯¥»¥¹¥Ý¥¤¥ó¥È¤Ë¤ÏIEEE 802.1X¤Î¥µ¥×¥ê¥«¥ó¥È¤ò¼ÂÁõ¤·,RADIUS¥µ¡¼¥Ð¤Îµ¡Ç½¤ò¤â¤¿¤»¤ë¡£
¥¨¡¡¥µ¡¼¥Ð¤Ë¤ÏIEEE 802.1X¤Î¥ª¡¼¥»¥ó¥Æ¥£¥±¡¼¥¿¤ò¼ÂÁõ¤·, RADIUS¥µ¡¼¥Ð¤Îµ¡Ç½¤ò¤â¤¿¤»¤ë¡£

Àµ²ò¤Ï¥¤¤Ç¤¢¤ë¡£

¤³¤Î¥Ú¡¼¥¸¤Î¥È¥Ã¥×¥Ø