Set up a radius client – CANOGA PERKINS 1502 Domain Management Module User Manual

Page 26

Advertising
background image

EdgeAccess Universal Chassis System

Model 1502 Domain Management Module

3-16

Set Up a Radius Client

Before you can set up the DMM as a Radius Client, you must set related attributes on the Radius
server to predefined values in order to properly authenticate and configure the user. The DMM
uses four vendor-specific attributes, type 25 in the Radius RFC; the Canoga Perkins vendor
identifier is 919.

• Attribute 1 is Access From; values: 1, UI; 2, SNMP; and 3, UI and SNMP; default is UI
• Attribute 2 is Access Level; values: 2, Observer; 3, Operator; and 4, Supervisor; default is

Observer

• Attribute 3 is Description, a string, optional and not predefined; default is "Radius Account"
• Attribute 4 is Logout User; values: 0, No, and 1, Yes; default is Yes

Use the Radius Client Configuration screen to set up communication with the Radius server in
order to authenticate users at login. To access the Radius Client Configuration screen, follow
these steps:

1. From the Change Security & Passwords menu, type

3

, "Radius Client Configuration," and

press <Enter>. The Radius Client Configuration appears.

2. At the prompt, type

1

to set the authentication mode, or

2

or 3 to set up communication with

a primary or alternate Radius server, then follow the prompts on the screen.

• Radius Client Mode: Radius then Local, Local then Radius, or None; Selects the primary

authentication source and the secondary source if the primary does not respond or rejects the
user; "Radius" means the radius server, "Local" means the DMM account database, "None"
indicates only the DMM account database

• Radius Server: Enter values for these parameters for a primary or alternate Radius server:

• IP Address: Set the address for the server; 0.0.0.0 indicates no server
• Shared Secret: Must match the Shared Secret set on the Radius server
• Retries: How many times the DMM tries to authenticate the user before trying the

alternate server or giving up; Range is 0 to 10

• Timeout: How long, in seconds, between unsuccessful attempts; Range is 1 to 30
• Priority: Set which server to contact first; Range is 1 (highest priority) to 255 lowest

priority); if priority is the same for two servers, the DMM will alternate tries between the
servers

3. To return to the Change Security & Passwords menu, press <Esc>.

Advertising
Popular Brands
Popular manuals