User's Manual

Table Of Contents
001-5008-000(Rev8) Page 84
8
Encryption
nter an encryption key composed of a string of up to 160 characters that will serve as the
encryption pass phrase.
Encryption Key
The encryption key generated is for display only and does not need to be recorded.
Ex. b3 35 b0 7b ba 8d eb 5d 44 66 3c 3a a7 16 f1 80
8.3 RADIUS
8.3.1 Overview
RADIUS (Remote Authentication Dial in User Service) is a networking protocol that provides
centralized authentication, authorization and accounting management for computers and
devices to connect and use a network service. The Viper uses RADIUS for authentication
and authorization.
To use RADIUS within a Viper network, an external RADIUS server must be set up with a
proper device database (identified by MAC addresses) and a user database. For security
reasons RADIUS transactions are encoded with an encryption key that is only known to the
RADIUS server and the Viper units.
The Viper uses RADIUS tication scenarios: user
authentication and device authentication.
e users, who wish to connect to a unit through the Viper
Web Interface, the FTP server, or the command shell. RADIUS can also be used to
devices based on their MAC addresses. Unauthorized devices will not be able to
establish a VPN secure tunnel with an access point.
Note: RADIUS is available in router mode only.
8.3.2 User Authentication
red independently for HTTP, FTP, and command shell. The
authentication type can be set to local, Radius, and local or Radius only (see Figure 8.2). In
ons, the HTTP interface is used as an example but they also apply to
the FTP and command shell interfaces.
ocal – The authentication is done “locally” within the Viper unit. Example: when accessing
in the
are
this time local authentication is performed on the password only.
Radius and Local - When accessing the HTTP server, check the user credentials against
username and password stored in the unit. If the username and password fail to match local
.2 ENCRYPTION
Select: Enabled, Disabled; Default: Enabled.
Viper offers 128-bit AES encryption.
Encryption Pass Phrase
Default: Dataradio
E
in two different and independent authen
RADIUS can be used to authenticat
authenticate
User access can be configu
the following descripti
L
the HTTP server, check the user credentials against username and password stored
unit. The user will not be able to access the HTTP server unless proper credentials
provided. Note: At