Deployment Guide
Amigopod 3.7 | Deployment Guide RADIUS Services | 99
1. In the Name field, enter a name to uniquely identify this server.
2. (Optional) You can use the Description field to include additional information.
3. (Optional) To enable RADIUS authentication for this server, mark the check box in the Enabled row.
4. In the Rank row, enter a number to specify the ranking order for this server. Authentication servers are
checked in order of increasing rank.
5. Under the Authorization heading, choose an authorization method from the Method drop-down list.
Method options available for Local Certificate Authority servers are:
No authorization - Authenticate only
Use the common name of the certificate to match a local user account
Assign a fixed user role (Contractor, Employee, or Guest)
Use PHP code to assign a user role
For information about these authorization methods, see “Configuring Authorization for External
Authentication Servers.”
The Test Authentication form for Local Certificate Authority servers includes EAP-TLS settings. For
information on testing a Local Certificate Authority authentication server, see “Testing External
Authentication Servers.”
For Local Certificate Authority authentication servers, the RADIUS Authentication Server form also
includes a link to the Extensible Authentication Protocol Configuration page, where you can manage EAP
configuration settings and view certificate information for the server. See “EAP and 802.1X Authentication”
in this chapter.
Configuring Authorization for External Authentication Servers
The level of authorized access an authenticated user can have is controlled by the external authentication
server’s authorization method. To configure a server’s authorization method, use the options under the
Authorization heading of the RADIUS server’s Edit Authentication form.
For more information about authorization methods, including examples, see “About Authorization Methods
in External Authentication Servers” in this chapter.