Table of Contents
Advertisement
Copyright © 2010, Juniper Networks, Inc.
Table 23: RADIUS Parameter Configuration Details (continued)
Task
Configure the router to ignore
the specified attributes in
RADIUS Access-Accept
messages.
Specify a list of the RADIUS
authentication servers used
to authenticate DHCP, L2TP,
and PPP clients.
Configure the options used
by RADIUS authentication
and accounting servers.
Your Action
1.
Click Ignore next to client.
2. In the Comment box, enter the comment.
3. Select the following check boxes to ignore the specified
attributes:
output-filter—Egress-Policy-Name (VSA 26-11)
input-filter—Ingress-Policy-Name (VSA 26-10)
framed-ip-netmask—Framed-IP-Netmask (RADIUS
attribute 9
logical-system-routing-instance—Virtual-Router (VSA
26-1)
1.
Click Authentication Server next to Radius.
2. Click Add new entry next to Authentication Server.
3. In the New authentication-server window, enter the IPv4
address.
1.
Click Options next to Radius.
2. In the Comment box, enter the comment.
3. Select the Ethernet Port Type Virtual check box to specify a
port type of virtual.
4. From the Interface Description Format list, select the
information that is included in or omitted from the interface
description that the router passes to RADIUS for inclusion in
the RADIUS attribute 87 (NAS-Port-Id).
Select one of the following:
sub-interface—To specify the subinterface.
adapter—To specify the adapter.
5. In the Nas Identifier box, enter a string in the range from 1 to
64 characters.
6. From the Accounting Session Id Format list, select the format
the router uses to identify the accounting session. Select one
of the following:
decimal—To use the decimal format.
description—To use the generic format, in the form jnpr
interface-specifier:subscriber-session-id.
Default: decimal
7. From the Revert Interval list, select the amount of time the
router waits after a server has become unreachable.
Range: 60 through 4294967295 seconds
Default: 600 seconds
8. Select the vlan-nas-port-stacked-format check box to
configure RADIUS attribute 5 (NAS-Port) to include the
S-VLAN ID, in addition to the VLAN ID, for subscribers on
Ethernet interfaces.
Chapter 7: Configuring Access
67
Advertisement
Table of Contents
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INTRUSION DETECTION PREVENTION DEVICES GUIDE REV 01
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1