1. Manuals
  2. Brands
  3. NETGEAR Manuals
  4. Network Hardware
  5. SSL312-100NAS - ProSafe SSL312 SSL VPN Concentrator...
  6. User manual

Configuring For Radius Domain Authentication - NETGEAR SSL312-100NAS - ProSafe SSL312 SSL VPN Concentrator 25 User Manual

Ssl312 user manual
Hide thumbs
Table of Contents

Advertisement

NETGEAR ProSafe SSL VPN Concentrator 25 SSL312 Reference Manual
For example, if you create a RADIUS domain in the SSL VPN Concentrator called "Miami
RADIUS server", you can add users to groups that are members of the "Miami RADIUS server"
domain. These user names must match the names configured in the RADIUS server. Then, when
users log in to the portal, policies, bookmarks and other user settings will apply to the users. If the
AAA user does not exist in the SSL VPN Concentrator, then only the global settings, policies and
bookmarks will apply to the user.
When specifying RADIUS domain authentication, you are presented with several authentication
protocol choices, as summarized in the following table:
Table 3-1.
Authentication
Description
Protocol
PAP
Password Authentication Protocol (PAP) is a simple protocol in which the client sends a
password in clear text.
CHAP
Challenge Handshake Authentication Protocol (CHAP) executes a three-way handshake
in which the client and server trade challenge messages, each responding with a hash of
the other's challenge message that is calculated using a shared secret value.
MSCHAP
Microsoft CHAP (MSCHAP) is a Microsoft variation of CHAP.
MSCHAPv2
MSCHAPv2 is an improved version providing mutual authentication between peers.
WiKID
WiKID is a key-based two-factor authentication method using public key cryptography.
The client sends an encrypted PIN to the WiKID server and receives a one-time passcode
with a short expiration period. The client logs in with the passcode.
The chosen authentication protocol must be configured on the RADIUS server and on the
authenticating client devices.

Configuring for RADIUS Domain Authentication

To create a domain with RADIUS authentication:
1. From the Access Administration menu, select Domains. The Domains window will display.
Click Add Domain.
2. From the Authentication Type pull-down menu, select a RADIUS domain that specifies the
authentication method to be used. The Add Domain window displays the fields for a domain
for RADIUS authentication.
3-4
v2.1, November 2008
Authenticating Users

Advertisement

Table of Contents
loading

Related Manuals for NETGEAR SSL312-100NAS - ProSafe SSL312 SSL VPN Concentrator 25

Related Content for NETGEAR SSL312-100NAS - ProSafe SSL312 SSL VPN Concentrator 25

This manual is also suitable for:

Prosafe ssl312Prosafe ssl vpn concentrator 25

Table of Contents