Vpn tunnel secret, Vpn group info, Vpn authentication – Compatible Systems 5.4 User Manual

Page 243: Pap authentication secret, Primary server ip address, Primary server retries

Advertising
background image

Chapter 14 - General

237

VPN Tunnel Secret

This value sets the attribute number for the VPN tunnel secret. The tunnel
secret is a shared secret between the VPN Client and the RADIUS server
which is used for authentication of tunnel connections. This attribute number
must also be set up in the RADIUS server’s dictionary file. The value may
range between 64 and 191. The default is 69.

VPN Group Info

This value sets the attribute number for the VPN group configuration. The
group configuration defines tunneling profiles for a group of one or more
VPN Client users. This attribute number must also be set up in the RADIUS
server’s dictionary file. The value may range between 64 and 191. The default
is 77.

VPN Authentication

This set of radio buttons sets the authentication protocol to be used for vali-
dation of remote VPN Client users to the RADIUS server.

If Use CHAP is selected, CHAP will be used to validate remote VPN
Client users to the RADIUS server.

If Use PAP is selected, PAP will be used to validate remote VPN Client
users to the RADIUS server. This should only be used for an older
RADIUS server which does not support CHAP authentication.

PAP Authentication Secret

This is the secret used to authenticate and encrypt packets before they are
passed on to the RADIUS server. The PAP authentication secret can be a
string from 1 to 255 ASCII characters in length.

>

Primary Server IP Address

The device will attempt to contact this RADIUS server first when it needs to
exchange RADIUS information. The address should be entered in
dotted-decimal notation (e.g. 198.238.41.7).

>

Primary Server Retries

The device will try to resend a packet if the primary RADIUS server doesn’t
acknowledge it within a timeout period. The timeout period for packets 1
through 10 is (in seconds): 1, 1, 2, 2, 3, 3, 4, 4, 5, 5.

If the retry limit is reached and a secondary server is configured, the device
will attempt to communicate with the secondary server.

Possible values range between 1 and 10 with a default of 5.

Advertising
Popular Brands
Popular manuals