Instruction manual

ManualsBrandsAlvarion ManualsComputer equipmentBreezeACCESS LB

191

192

193

194

195

196

197

198

199

200

Menus and Parameters

2-91

BreezeACCESS Version 4.3 System Manual

to allow access for the user. This always includes verification of the

password, but can also specify the client(s) or port(s) to which the user

is allowed access.

In the BreezeACCESS system there is a RADIUS NAS (Network Access

Server) implemented in each Subscriber Unit. The RADIUS server can

be used for authentication purposes only, for accounting purposes only,

or for both authentication and accounting purposes.

The RADIUS Parameters menu includes three sub-menus:

a. General RADIUS Parameters – intended for all users of RADIUS.

b. Authentication Parameters.

c. Accounting Parameters.

General RADIUS Parameters Menu

The General RADIUS Parameters menu is used to define general

RADIUS parameters that must be configured by all SUs to be served by

a RADIUS server, either for authentication only, for accounting only, or

for both authentication and accounting.

 User Name – To define the user name that will be used by the

RADIUS server to identify the SU.

Valid values: A string of up to 64 printable ASCII characters, case

sensitive.

Default value: The unit’s MAC Address

 User Password – To define the password to be used by the RADIUS

server to confirm the identity of the SU.

Valid values: A string of up to 64 printable ASCII characters, case

sensitive.

Default value: RadiusPassword1.

 Shared Secret – To define the key that will be used for encrypting

the User Password for increased security. The algorithm used for

encrypting the User Password is MD5.

Valid values: A string of up to 20 printable ASCII characters, case

sensitive.

Default value: RadiusSecret1234.

Authentication Parameters Menu

The implementation is based on RFC 2865. The mechanism allows an

SU to synchronize and associate to its AU, then request authentication

from the RADIUS server. Only if the authentication is successful the

user will receive services (data and voice). It is then possible to

download from a remote server the full unit services configuration

NOTE:

Different servers may be used for authentication and for accounting.