Vendor-specific radius attribute, Configuring radius accounting, 1 select servers > radius acct – Panasonic NN46110-600 User Manual

Chapter 2 Configuring servers 55

Group-level RADIUS authentication works only with clients that use a group ID
and password. This excludes all non-IPsec client implementations. You must use

the group ID and group password to configure each client in the group for group

authentication.

Note:

There are no separate group levels of authentication on a

RADIUS configuration for the firewall user authentication (FWUA)
users. Because they are only members of the global group configuration,
if you have multiple RADIUS servers, you must add these users to the

group on the VPN Router global RADIUS configuration window. This

also applies to PPTP and L2TP user tunnels.

Vendor-specific RADIUS attribute

You can use the vendor-specific RADIUS attribute to store VPN Router group

membership information in a RADIUS vendor-specific attribute as well as to the
class attribute.

Configuring RADIUS accounting

You can use the RADIUS accounting configuration window to specify how your
VPN Router saves RADIUS accounting results. By default, the results are stored
locally. You can also save the RADIUS accounting information to a remote
RADIUS server.

Note:

If you set the date ahead and then set it back, external RADIUS

accounting no longer works.

To configure RADIUS accounting:

1

Select

Servers > Radius Acct

.

2

Click

Enable

to enable

internal RADIUS accounting

. Internal RADIUS

accounting is enabled by default.

3

In

Session Update Interval

, enter an interval when a snapshot of the current

active tunnel sessions is recorded to a journal file. Use the format, hh:mm:ss,

for the interval. The journal file stores the session information until the user

logs out of the tunnel session, after which the session stop record is saved on

Nortel VPN Router Security — Servers, Authentication, and Certificates