Host address (auhostaddress), Secondary host address (ausecondaryhostaddress), Host port (auhostport) – Patton electronic 29XX User Manual

Setting Up Authentication

39

Access Server Administrators’ Reference Guide

5 • Authentication

Host Address (auHostAddress)

Tells the access server the IP address of the primary external authentication server. This must be the IP address
as the access server will not resolve a Fully Qualified Domain Name.

Secondary Host Address (auSecondaryHostAddress)

When using a remote authentication server (RADIUS) this variable provides an alternative server IP address.

Host Port (auHostPort)

This variable tells the access server which UDP port to use when connecting to the host specified in the Host
Address variable. The RADIUS standard, as per RFC 2138, specifies port 1812 for RADIUS authentication.
Some older installations of RADIUS use port 1645.

Timeout (auTimeout)

This option specifies the time, in seconds, before the access server will retransmit an authentication request to
an external authentication server.

Retries (auRetries)

This option specifies the number of times the access server will resend an authentication request to a RADIUS
server after a TIMEOUT occurs. If this number is exceeded then the secondary host will be tried. If this num-
ber is exceeded by the secondary host, the user will be rejected.

Secret (auSecret)

The Secret variable sets the shared secret between the authentication client (access server) and the authentica-
tion server (RADIUS). It is used to encrypt an authentication request and to decrypt an incoming reply from
the server. The secret on the access server and the RADIUS server must match and must be 15 or fewer print-
able, non space, ASCII characters.

Note

The same secret word must used on the access server and in the RADIUS cli-
ents file.

NAS Identifier (auNASIdentifier)

This variable is used to identify the access server to the remote authentication server. If this option is blank,
then the access server will use it’s IP address to identify itself to the remote server. It does this by using the
NAS-IP-Address attribute instead of the NAS-Identifier attribute.

Accounting Address (auAcctAddress)

This is the IP address of the accounting server. RADIUS also allows for the recording of accounting informa-
tion.

Secondary Accounting Address (auSecondaryAcctAddress)

When using a remote accounting server (such as RADIUS Accounting) this variable provides the IP address of
the accounting server.