Table of Contents
Advertisement
C
5: M
O
HAPTER
ENU
PTIONS
Remote Authentication Dial In User Service (RADIUS)
RADIUS is a protocol specified by the Internet Engineering Task Force (IETF)
working group. There are two specifications that make up the RADIUS protocol
suite: Authentication and Accounting. These specifications aim to centralize
authentication, configuration, and accounting for dial-in services to an independent
server.
The RADIUS protocol exists in several implementations such as freeRADIUS,
openRADIUS or RADIUS on UNIX systems. The RADIUS protocol itself is well
specified and tested. We can give a recommendation for all products listed above,
especially for the freeRADIUS implementation.
Note: Currently, we do not support challenge/response. An Access Challenge
response is seen and evaluated as an Access Reject.
To access a remote device using the RADIUS protocol you have to login, first. You
are asked to specify your user name and password, then. The RADIUS server
reads your input data (Authentication) and the ARMC/3P looks for your profile
(Authorization). The profile defines (or limits) your actions and may differ
depending onto your specific situation. If there is no such profile your access via
RADIUS will be refused.
Figure 87 Authentication Settings
95
Hide quick links:
Advertisement
Table of Contents
