Motorola RFS7000 Series System Reference Manual page 135

CAUTION The server's
!
MU's timeout and retries. If the MU's time is less than the server's, a fall back
to the secondary server will not work.
8. Refer to the Accounting
Server.
Accounting Server
Address
Accounting Port
Accounting Shared
Secret
Accounting Timeout
Accounting Retries
Accounting Mode
9. Select the Re-authentication
Periodic repetition of the authentication process provides ongoing security for currently authorized
connections. Define an interval between 30 and 65535 seconds.
10. Refer to the Advanced
PAP
CHAP
DSCP/TOS
11. Refer to the Status field for the current state of the requests made from applet. This field displays
error messages if something goes wrong in the transaction between the applet and the switch.
12. Click OK to use the changes to the running configuration and close the dialog.
13. Click Cancel to close the dialog without committing updates to the running configuration
Timeout and Retries
field and define the following credentials for a primary and secondary NAC
Enter the IP address of the primary and secondary server acting as
the NAC accounting server.
Enter the TCP/IP port number for the primary and secondary server
acting as the NAC accounting data source.
The default port is 1813.
Provide a shared secret (password) for user credential
authentication with the primary or secondary NAC accounting
server.
Enter a value (between 1 and 300 seconds) to indicate the number
of elapsed seconds causing the switch to time out a request to the
primary or secondary accounting server.
Enter a value between 1 and 100 to indicate the number of times
the switch attempts to reach the primary or secondary NAC
accounting server before giving up.
Use the Accounting Mode drop-down menu to define the
accounting mode as either Start-Stop,
Start-Interim-Stop. Define the interval (in seconds) used with the
selected accounting mode.
checkbox to force a periodic re-authentication with the NAC server.
field to define the authentication protocol used with the NAC Server.
PAP - Password Authentication Protocol sends a username and
password over a network to a server that compares the username
and password to a table of authorized users. If the username and
password are matched in the table, server access is authorized.
CHAP is an encrypted authentication method based on Microsoft's
challenge/response authentication protocol.
Optionally mark packets with a DiffServ CodePoint (DSCP) in its
header. The DSCP value is stored in the first 6 bits of the Type of
Service (ToS) field that is part of the standard IP header. The DCSP
values are associated with a forwarding treatment called Per Hop
Behaviors (PHB). Service can be provisioned (if necessary) by
assigning a DCSP point code from 1 - 6.
Network Setup
should be less than what is defined for an
Stop Only or
4-49