Juniper Networks J-Series Network Router User Manual


 
4. Go on to one of the following procedures:
To specify a system authentication order, see Configuring Authentication
Order on page 15.
To configure a remote user template account, see Creating a Remote
Template Account on page 19.
To configure local user template accounts, see Creating a Local Template
Account on page 20.
Table 11: Setting Up RADIUS Authentication
CLI Configuration EditorJ-Web Configuration EditorTask
From the [edit] hierarchy level, enter
edit system
1.
In the J-Web interface, select
Configuration>View and Edit>Edit
Configuration.
2.
Next to System, click Configure or
Edit.
Navigate to the System level in the
configuration hierarchy.
Set the IP address of the RADIUS
server:
set radius-server address 172.16.98.1
1.
In the Radius server box, click Add
new entry.
2.
In the Address box, type the IP
address of the RADIUS server:
172.16.98.1
Add a new RADIUS server
Set the shared secret of the RADIUS
server:
set radius-server 172.16.98.1 secret
Radiussecret1
In the Secret box, type the shared secret of
the RADIUS server:
Radiussecret1
Specify the shared secret (password) of
the RADIUS server. The secret is stored
as an encrypted value in the
configuration database.
Set the router's loopback address as
the source address:
set radius-server 172.16.98.1
source-address 10.0.0.1
In the Source address box, type the
loopback address of the router:
10.0.0.1
Specify the source address to be
included in the RADIUS server requests
by the router. In most cases, you can
use the loopback address of the router.
Setting Up TACACS+ Authentication
To use TACACS+ authentication, you must configure at least one TACACS+ server.
The procedure provided in this section identifies the TACACS+ server, specifies the
secret (password) of the TACACS+ server, and sets the source address of the Services
Router's TACACS+ requests to the loopback address of the router. This procedure
uses the following sample values:
The TACACS+ server's IP address is 172.16.98.24.
The TACACS+ server's secret is Tacacssecret1.
The loopback address of the router is 10.0.0.1.
Managing User Authentication with a Configuration Editor 13
Chapter 1: Managing User Authentication and Access