Configuring radius – Allied Telesis AT-S94 User Manual
Page 59
Configuring Device Security
Configuring Server Based Authentication
Page 59
Configuring RADIUS
Remote Authorization Dial-In User Service (RADIUS) servers provide additional security for networks. RADIUS
servers provide a centralized authentication method for web access.
In addition, RADIUS servers, when activated, record device management sessions on Telnet, serial and WEB
and/or 802.1x authentication sessions. The device uses the configured priorities of the available RADIUS servers
to select the RADIUS server that holds the accounting information. For IPv6, only global IPv6 addressing is
supported.
To configure RADIUS security settings:
1.
Click Mgmt. Protocols > RADIUS. The RADIUS Page opens:
Figure 30: RADIUS Page
The RADIUS Page contains the following fields:
•
Radius Accounting Usage — Specifies the RADIUS recording session type. The default value is None. The
possible field values are:
–
802.1X — Indicates the RADIUS recording session is used for 802.1X authentication.
–
Login — Indicates the RADIUS recording session is used for management accounting from login to
logout.
–
Both — Indicates the RADIUS recording session is used for 802.1X authentication and management
accounting from login to logout.
•
Default Retries — Defines the default number of transmitted requests sent to the RADIUS server before a
failure occurs. Possible field values are 1-10.
•
Default Timeout for Reply — Defines the default time interval in seconds that passes before the connection
between the device and the TACACS+ server times out. The field range is 1-60 seconds and the default is 10
seconds.