Table of Contents
Advertisement
Chapter 4 - Software
Authentication Screen
This screen is used to define the authentication method and remote host address for calls. The
Authentication/Radius Client Configuration:POTS modem X fields allow you to set these parameters
on a per port basis. This screen displays two ports for the MA220, four ports for the model MA420 or
eight ports for the model MA820.
Please Note: The Radius Client details defined here will also be used by the Modem Sharing process
when it's set to Modem Sharing with Radius Authentication.
The Authentication Type field (on this screen) only applies to RAS Calls. When the type is set to Local,
the MultiAccess will look to match the credentials provided by the caller with credentials listed in the Local
Users menu. When the type is set to RADIUS, the MultiAccess will send the credentials to the RADIUS
Server defined in this menu for authorization.
The Remote Host Address field defines the IP address issued to the user (PPP peer) dialed in on this
port. This address needs to be on the same subnet (network number) as that of the MultiAccess.
The type
of PPP session is standard PAP authentication with IP as the network protocol.
The RADIUS Server Address field defines the location of your RADIUS Server that is to authorize the
session. The RADIUS Server must be listening on the same UDP port that the RADIUS Client
(MultiAccess) is sending the authorization request on.
The RADIUS Accounting Address field defines the location of your RADIUS Server that accepts
accounting information. Normally, Radius Authorization and Radius Accounting functions are handled by
the same RADIUS server, but they can be handled by separate servers. The RADIUS
Accounting server must be listening on the same UDP port the RADIUS Client (MultiAccess) is sending
accounting packets on. Radius accounting is traditionally used to track usage for billing purposes.
RADIUS Accounting is a process that starts after successful RADIUS authentication. The MultiAccess
sends an accounting start packet to the accounting server after it receives an access accept packet from
the authorization server. When the user disconnects, the MultiAccess sends an accounting stop packet
to the accounting server. RADIUS accounting summarizes the time and date, duration, POTS port
connected on and IP address given to the user, for a particular call. RADIUS Accounting does not track
the type or amount of data for the session, nor the places the user communicates with.
The Secret is an encryption key used by both the RADIUS Server and RADIUS Client and so it must be
the same alpha numeric string (including case) defined in both. The MultiAccess implements MD5
encryption.
31
Multi-Tech Systems, Inc. MultiAccess User Guide
Advertisement
Table of Contents
