Filter
Top Products
Prestige 1600 Universal Access Concentrator
RADIUS Support
12-2
12.2 RADIUS Support
This section shows you to configure user authentication and accounting using an external RADIUS server.
12.2.1 About RADIUS
RADIUS (Remote Authentication Dial-In User Service) is a client/server protocol that enables remote access
servers to communicate with a central server to authenticate dial-in users. RADIUS allows a company to maintain
user profiles in a central database that all remote servers can share.
12.2.2 Using RADIUS Authentication
12.3 RADIUS Authentication
Your Prestige has a built-in dial-up user list; however, the number of users that can be stored locally is limited due
to memory constraints. If you have more users than what the Prestige can store locally, use an external RADIUS
(Remote Authentication Dial-In User Service) server that provides authentication service for unlimited number of
users.
12.3.1 Installing a RADIUS Server
To use RADIUS authentication, you need to have a UNIX or Windows NT machine on your network as the
RADIUS server, as well as the RADIUS software itself.
You can obtain the RADIUS server software, along with documentation, at
http://www.livingston.com/Tech/FTP/pub-le-radius.shtml or
ftp://ftp.livingston.com/pub/le/radius/
Follow the included instructions to install the software on your server.
After you install the server software, you will need to edit the dictionary file in the RADIUS configuration
directory (usually /etc/raddb). Using any text editor, add the following lines to the dictionary file:
# Zyxel proprietary attributes
ATTRIBUTE Zyxel-Callback-Option 192 int0eger
VALUE Zyxel-Callback-Option None 0
VALUE Zyxel-Callback-Option Optional 1
VALUE Zyxel-Callback-Option Mandatory 2
# Callback phone number source
ATTRIBUTE Zyxel-Callback-Phone-Source 193 integer
VALUE Zyxel-Callback-Phone-Source Preconfigured 0
VALUE Zyxel-Callback-Phone-Source User 1
The message exchange of RADIUS authentication is shown next.