Motorola WiNG 4.4 Reference Manual page 153

NOTE: The Radius or NAC server's
defined for an MU's timeout and retries. If the MU's time is less than the server's, a fall
back to the secondary server will not work.
7. Refer to the Accounting
Accounting Server Enter the IP address of the primary and secondary server acting as the Radius accounting
Address server.
Accounting Port Enter the TCP/IP port number for the primary and secondary server acting as the Radius
accounting data source. The default port is 1813.
Accounting Shared Provide a shared secret (password) for user credential authentication with the primary or
Secret secondary Radius accounting server.
Accounting Enter a value (between 1 and 300 seconds) to indicate the number of elapsed seconds
Timeout causing the switch to time out a request to the primary or secondary accounting server.
Accounting Retries Enter a value between 1 and 100 to indicate the number of times the switch attempts to reach
the primary or secondary Radius accounting server before giving up.
Accounting Mode Use the Accounting Mode drop-down menu to define the accounting mode as either
Stop,
selected accounting mode.
8. Select the Re-authentication
repetition of the authentication process provides ongoing security for currently authorized connections. Define an
interval between 30 and 65535 seconds.
9. Refer to the Advanced field to define the authentication protocol used with the Radius Server.
PAP PAP - Password Authentication Protocol sends a username and password over a network to
a server that compares the username and password to a table of authorized users. If the
username and password are matched in the table, server access is authorized.
CHAP CHAP is an encrypted authentication method based on Microsoft's challenge/response
authentication protocol.
DSCP/TOS Optionally mark packets with a DiffServ CodePoint (DSCP) in its header. The DSCP value is
stored in the first 6 bits of the Type of Service (ToS) field that is part of the standard IP header.
The DCSP values are associated with a forwarding treatment called Per Hop Behaviors (PHB).
Service can be provisioned (if necessary) by assigning a DCSP point code from 1 - 6.
10.Click OK to save the changes made to this screen.
11.Click Cancel to revert back to the last saved configuration and move back to the
Network > Wireless LANs > Edit screen.
Configuring an External Radius Server for Optimal Switch Support
The switch's external Radius Server should be configured with Motorola
utilize the user privilege values assignable by the Radius Server. The following two values should be configured on the
external Server for optimal use with the switch:
• Motorola user privilege values
• User login source
Configuring Motorola Solutions Specific Radius Server User Privilege Values
Timeout
field and define the following credentials for a primary and secondary Radius Server.
Stop Only, or Start-Interim-Stop. Define the interval (in seconds) used with the
checkbox to force a periodic re-authentication with the Radius server. Periodic
and Retries should be less than what is
RF Switch specific attributes to best
Solutions
Network Setup 4 - 49
Start-