Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Brocade Mobility Access Point System Reference Guide

605

53-1003100-01

9

The RADIUS Server Policy screen displays with the Server Policy tab displayed by default.

3. Select the Activate RADIUS Server Policy button to enable the parameters within the screen for

configuration. Ensure this option remains selected, or this RADIUS server configuration is not
applied to the access point profile.

4. Define the following Settings required in the creation or modification of the server policy:

5. Set the following Authentication parameters to define server policy authorization settings.

RADIUS User Pools

Select the user pools to apply to this server policy. Up to 32 can be applied. If a
pool requires creation, select the Create link. For more information, see Defining
User Pools on page 9-599.

LDAP Server Dead Period

Set an interval in either Seconds (0 - 600) or Minutes (0- 10) during which the
access point will not contact its LDAP server resource. A dead period is only
implemented when additional LDAP servers are configured and available.

LDAP Groups

Use the drop-down menu to select LDAP groups to apply the server policy
configuration. Select the Create or Edit icons as needed to either create a new
group or modify an existing group. Use the arrow icons to add and remove groups
as required.

LDAP Group Verification

Select the check box to set the LDAP group search configuration. This setting is
enabled by default.

LDAP Chase Referral

Select the check box to set the LDAP referral chase feature. This settings is
enabled by default. When enabled, if the LDAP server does not contain the
requested information, it indicates to the LDAP client that it does not have the
requested information and provides the client with another LDAP server that
could have the requested information. It is up to the client to contact the other
LDAP server for its information.

Local Realm

Define the LDAP Realm performing authentication using information from an
LDAP server. User information includes user name, password, and the groups to
which the user belongs.

Default Source

Select the RADIUS resource for user authentication with this server policy.
Options include Local for the local user database or LDAP for a remote LDAP
resource. The default setting is Local

Default FallBack

Select this option to indicate that fall back from RADIUS to local is enabled
incase RADIUS authentication is not available for any reason. This option is only
enabled when LDAP is selected as the Default Source.
Use the Add Row button to add fallback sources into the Sources table. Provide
the following information:

•

Source – Select the type of fallback. Select from LDAP or Local

•

Fallback – Select to enable fallback on this record.

•

SSID – Enter the SSID to fall back on.

•

Precedence – Use the spinner to select the precedence for selection of
fallback.