Filter
Top Products
Chapter 6: User Management
113
Implementing RADIUS Remote Authentication
Remote Authentication Dial-in User Service (RADIUS) is an AAA
(authentication, authorization, and accounting) protocol for network
access applications.
To use the RADIUS authentication protocol:
1. Click User Management > Authentication Settings to open the
Authentication Settings page.
2. Click the RADIUS radio button to enable the RADIUS section of the
page.
3. Click the
icon to expand the RADIUS section of the
page.
4. In the Primary Radius Server and Secondary Radius Server fields,
type the IP address of your primary and optional secondary remote
authentication servers, respectively (up to 37 characters).
5. In the Shared Secret fields, type the server secret used for
authentication (up to 37 characters).
The shared secret is a character string that must be known by both
the Dominion KX II and the RADIUS server to allow them to
communicate securely. It is essentially a password.
6. The Authentication Port default is port is 1812 but can be changed
as required.
7. The Accounting Port default port is 1813 but can be changed as
required.
8. The Timeout is recorded in seconds and default timeout is 1 second,
but can be changed as required.
The timeout is the length of time the Dominion KX II waits for a
response from the RADIUS server before sending another
authentication request.
9. The default number of retries is 3 Retries.
This is the number of times the Dominion KX II will send an
authentication request to the RADIUS server.
10. Choose the Global Authentication Type from among the options in
the drop-down list:
PAP - With PAP, passwords are sent as plain text. PAP is not
interactive. The user name and password are sent as one data
package once a connection is established, rather than the server
sending a login prompt and waiting for a response.