Table of Contents
Advertisement
OSD Operation
Advanced Network Management Settings
Authentication
The Authentication page allows remote authentication to be set up via
RADIUS and LDAP/S.
Disable Local Authentication
Check this checkbox to disable local login authentication of the KVM
switch. If checked, the switch can only be accessed using LDAP,
LDAPS, MS Active Directory, NetDirector (ND) management and/or
RADIUS authentication.
RADIUS Settings
To allow authentication and authorization for the B064-Series KVM over IP switch through a RADIUS server, do the following:
1. Check the Enable check box in the RADIUS Settings sections.
2. Select Preferred or Alternate RADIUS server from the dropdown menu.
3. Fill in the IP address and service port number for either the Preferred or Alternate RADIUS server. You can use the IPv4 address, the IPv6
address or the domain name in the Server IP field.
4. Select the Authentication Type: PAP (Password Authentication Protocol) or CHAP (Challenge-Handshake Authentication Protocol) from the
drop-down menu.
5. In the Timeout field, set the time in seconds that the KVM over IP switch waits for a RADIUS server reply before it times out.
6. In the Retries field, set the number of allowed RADIUS retries.
7. In the Shared Secret field, key in the character string that you want to use for authentication between the B064-Series KVM over IP switch and
the RADIUS server. A minimum of 6 characters is required.
On the RADIUS server, set the entry for each user as su/xxxx, where xxxx represents the username assigned to the user in the KVM switch. User
access rights will be the same as those that were assigned to them in the KVM switch. (See User Management sections for details).
AD / LDAP Authentication and Authorization Settings
To allow authentication and authorization for the B064 Series KVM Switch via AD / LDAP, refer to the information in the table, below:
Character
Enable
Preferred/ Alternative LDAP
Server IP
Port
Timeout
Admin DN
Admin Name
Password
Search DN
Note: If the LDAP Setting is enabled, the LDAP schema for MS Active Directory must be extended, or an OpenLDAP server must be installed
and configured. (See LDAP Server Configuration, in the following section for details.)
NetDirector (ND) Management
To allow authorization for the KVM over IP switch through a NetDirector (ND) server, check Enable and fill in the ND server's IP address and
service port in the appropriate fields.
(continued)
(continued)
Meaning
Check the Enable checkbox to allow AD/LDAP authentication and authorization.
From the drop-down menu, specify either Preferred LDAP or Alternative LDAP.
Fill in the IP address of the Preferred or Alternate LDAP server.
Fill in the port number of the Preferred or Alternate LDAP server. For LDAP, the default port number is 389.
Set the time in seconds that the B064-Series KVM Switch waits for an LDAP server reply before timing out.
Consult the LDAP administrator to ascertain the appropriate entry for this field. For example, the entry might look
like this: ou=b064-032-04-ip,dc=tripplite,dc=com
Fill in the LDAP administrator's username.
Fill in the LDAP administrator's password.
Set the distinguished name of the search base. This is the domain name where the search starts for user names.
40
Advertisement
Table of Contents
Troubleshooting
