Brocade Mobility RFS7000-GR Controller System Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual

390

Brocade Mobility RFS7000-GR Controller System Reference Guide

53-1001944-01

Configuring IPSec VPN

6

1. Select Security > IPSec VPN from the main menu tree.

2. Select the Authentication tab.

3. Define whether IPSec VPN user authentication is conducted using a RADIUS Server (by

selecting the RADIUS radio button), by a user-defined set of names and password (by selecting
the User Table radio button) or if no authentication is used for credential verification (by
selecting the No Authentication radio button).

4. Enter a NAS ID for the NAS port.

The profile database on the RADIUS server consists of user profiles for each connected
network access server (NAS) port. Each profile is matched to a username representing a
physical port. When the switch authorizes users, it queries the user profile database using a
username representative of the physical NAS port making the connection.

5. If the RADIUS Server radio button is selected, the following server information displays within

the RADIUS tab:

6. Select an existing RADIUS Server and click the Edit button to modify its designation as a

primary or secondary RADIUS Server, IP address, port, NAS ID and shared secret password.

Brocade recommends only modifying an existing RADIUS Server when its current configuration
is no longer viable for providing user authentication. Otherwise, define a new RADIUS Server.

Type

Displays whether this target server is a Primary or Secondary RADIUS Server.

Server IP Address

Displays the IP address of the server acting as the data source for the RADIUS
server.

Port

Displays the TCP/IP port number for the server acting as a data source for the
RADIUS. The default port is 1812.