Table of Contents
Advertisement
Solaris or Linux
DES-CBC-MD5
Authorization server requirements
The authorization server must satisfy the following requirements if it works together with the
authentication server:
Prerequisite OS
•
Windows Server 2003
•
Windows Server 2003 R2
•
Windows Server 2008
•
Windows Server 2008 R2
Prerequisite software
Active Directory
Authentication protocol for user for searching
LDAP v3 Simple bind
Connecting two authentication servers
Two authentication servers can be connected. When the servers are connected, the server configurations
must be the same, except for the IP address and the port.
If you search for a server using information registered in the SRV records in the DNS server, confirm that
the following conditions are satisfied:
LDAP server conditions:
•
The environmental setting for the DNS server is completed at the LDAP server.
•
The host name, the port number, and the domain name of the LDAP server are registered in the DNS
server.
Kerberos server conditions:
•
The host name, the port number, and the domain name of the Kerberos server are registered in the
DNS server.
•
You cannot use the SRV records on a RADIUS server.
Because UDP/IP is used to access the RADIUS server, no encrypted communications are available, such
as negotiations between processes. To access the RADIUS server in a secure environment, encryption in
the packet level is required, such as IPsec.
If an LDAP server or Kerberos server is used as an authentication server and works with an authorization
server, the authentication server and the authorization server must use the same host.
If you use RADIUS servers as authentication servers, you can connect two authentication servers
(primary server and secondary server) and one authorization server.
44
Setting up and managing user accounts
Advertisement
Table of Contents
