CS1708i / CS1716i User Manual
RADIUS Examples
RADIUS Server access rights examples are given in the table, below:
String
c,w
w,j,l
pn/0102
pf/a
sv/2
CC Management Settings
To allow authorization for the CS1708i / CS1716i through a CC (Control
Center) server, check Enable and fill in the CC Server's IP address and the port
that it listens on in the appropriate fields.
LDAP Settings
The CS1708i / CS1716i allows log in authentication and authorization through
external programs. To allow authentication and authorization via LDAP or
LDAPS, the Active Directory's LDAP Schema must be extended so that an
extended attribute name for the CS1708i / CS1716i – CS1716i-accessRight –
is added as an optional attribute to the person class.
Note: Authentication refers to determining the authenticity of the person
logging in; authorization refers to assigning permission to use the
device's various functions.
In order to configure the LDAP server, you will have to complete the following
procedures: 1) Install the Windows Server Support Tools; 2) Install the Active
Directory Schema Snap-in; and 3) Extend and Update the Active Directory
Schema.
To allow authentication and authorization for the CS1708i / CS1716i via
LDAP / LDAPS, refer to the information in the table on the following page. For
more information, please see the ATEN website at www.aten.com.
64
User has administrator privileges; user can access the system
via the Windows Client.
User can access the system via the Windows Client; user can
access the system via the Java Applet; user can access log
information via the user's browser.
User cannot access station 01, port 02
User can access all ports
User can only view station 02
Meaning