Cabletron Systems CSX1000 User Manual

Page 175

Advertising
background image

Workgroup Remote Access Switch 175

C

ONFIGURING

D

EVICE

L

EVEL

D

ATABASES

Off-node Device Database Location

O

FF

-

NODE

D

EVICE

D

ATABASE

L

OCATION

C

ONFIGURATION

E

LEMENTS

D

ATABASE

L

OCATION

The database location for device level security. The choices for the off-node database location are
None (Use on-node), VRA Manager, or RADIUS. Choosing an off-node database location enables
the particular database.

Note: Enabling VRA Manager as the off-node device database location automatically enables

VRA Manager as a Call Control Manager. However, disabling VRA Manager as the
authentication agent will not disable VRA Manager as a Call Control Manager. Refer to the
SecureFast Virtual Remote Access User’s Guide or the

Configuring Call Control

chapter of this

guide for more information.

O

FF

-

NODE

D

EVICE

D

ATABASE

L

OCATION

B

ACKGROUND

I

NFORMATION

An off-node, central database allows a network with more than one CyberSWITCH to access one
database for device authentication. The CyberSWITCH will access the off-node database to locate
authentication information on a remote device that is attempting to establish a connection.

If the On-node Device Database has been enabled, and either VRA Manager or RADIUS has been
selected as the off-node database location, both databases will be searched for the device
attempting the incoming or outgoing call. The on-node database will be searched and then, if the
correct device is not found, the off-node database will be searched. Authentication is based on
device information received from the first matching database. Matching a device is defined in
different ways, depending on the call is made. For example, if an outbound call is made on an IP
WAN interface by using the ip ping command, the IP address is the method that is used to search
the database. If a matching IP address is found, a connection is attempted. If the system is unable
to authenticate the peer, the connection attempt is done. The system will not attempt to continue
searching the remaining database entries or additional off-node database for the correct peer.

Advertising
This manual is related to the following products:

CSX1200

Popular Brands
Popular manuals