Configure The Radius Authentication Client Function/Radius Accounting Client Function (Case 1: Filter_Id_Head) - Seiko SMARTCS NS-2250 Instruction Manual

4.8.11 Configure the RADIUS authentication client function/RADIUS accounting client function
(case 1: filter_id_head)
This section describes the settings to centrally manage users that access the NS-2250 by
using the RADIUS authentication server/RADIUS accounting server.
This example list settings to determine whether the user in question is a device
management user, normal user, or port user by the Filter-Id attribute value to be sent from
the authentication server after user authentication by the RADIUS authentication server.
Configuring these settings is useful when the serial ports that can be accessed by each
port user can be fixed. (For example, user1 can access serial ports 1 through 10, user2
can access serial ports 20 through 30, and so on.) Configure access control of serial ports
for each port user as Filter-Id attribute values at the RADIUS authentication server.
Port server setting
Method of connection
Port user authentication
Port log location
Port log transfer function
Authentication/accounting protocol
Configuration diagram
Telnet/SSH client
192.168.2.1
login:
login:
Figure 4-14 RADIUS authentication / accounting function (filter_id_head)
4-88
Monitored
Monitored
equipment
equipment
NS-2250
192.168.1.100
192.168.1.254
Router
192.168.2.254
: Direct mode (default)
: Telnet Normal mode (default)
: Yes
: RAM(default)
: OFF(default)
: RADIUS
Use RADIUS authentication for all
users.
Configure the access privileges for
serial ports at the RADIUS
authentication server.
Refuse access to users for which a
user group cannot be identified.
RADIUS RADIUS
server1 server2
192.168.1.252 192.168.1.253