RSA SecurID with an RSA RADIUS server is used for user authentication. The Brocade switch does
not communicate directly with the RSA Authentication Manager, so the RSA RADIUS server is used
in conjunction with the switch to facilitate communication.
To learn more about how RSA SecurID works, visit www.rsa.com for more information.
Setting up the RSA RADIUS server
For more information on how to install and configure the RSA Authentication Manager and the RSA
RADIUS server, refer to your documentation or visit www.rsa.com.
1. Create user records in the RSA Authentication Manager.
2. Configure the RSA Authentication Manager by adding an agent host.
3. Configure the RSA RADIUS server.
Fabric OS Administrator's Guide
53-1002446-01
Setting up the RSA RADIUS server involves adding RADIUS clients, users, and vendor specific
attributes to the RSA RADIUS server.
a. Add the following data to the vendor.ini file:
vendor-product = Brocade
dictionary = brocade
ignore-ports = no
port-number-usage = per-port-type
help-id = 2000
b. Create a brocade.dct file that needs to be added into the dictiona.dcm file located in the
following path:
C:\Program Files\RSA Security\RSA RADIUS\Service
Figure 11
on page 108 shows what the brocade.dct file should look like and
page 108 shows what needs to be modified in the brocade.dcm file.
NOTE
The dictionary files for RSA RADIUS Server must remain in the installation directory. Do not
move the files to other locations on your computer.
Add Brocade-VSA macro and define the attributes as follows:
•
vid (Vendor-ID): 1588
•
type1 (Vendor-Type): 1
•
len1 (Vendor-Length): >=2
The authentication model using RADIUS and LDAP
5
Figure 12
on
107