Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series 324/325 Access Points

151

152

153

154

155

156

157

158

159

160

Parameter Description

Retry Count Enter a number between 1 and 5 to indicate the maximum number of authentication attempts. The

default value is 3.

Dead time Specify a dead time in minutes within the range of 1–1440 minutes. The default dead time interval

is 5 minutes.

Session

authorization

Enables or disables session authorization. When enabled, the optional authorization session is

turned on for the admin users. By default, session authorization is disabled.

Table 35: TACACS Configuration Parameters

You can also add TACACSserver by selecting the New option when configuring authentication parameters for

management users. For more information, see Configuring Authentication Parameters for Management Users

on page 141.

l CPPMServer for AirGroup CoA—To configure a ClearPass Policy Manager server used for AirGroup CoA

(Change of Authorization), select the CoA only check box. The RADIUSserver is automatically selected.

Parameter Description

Name Enter a name of the server.

Server

address

Enter the host name or IP address of the server.

Air Group CoA

port

Enter a port number for sending AirGroup CoA on a port different from the standard CoA port.

The default value is 5999.

Shared key Enter a shared key for communicating with the external RADIUS server.

Retype key Re-enter the shared key.

Table 36: ClearPass Policy Manager Server Configuration Parameters for AirGroup CoA

4. Click OK.

The ClearPass Policy Manager server acts as a RADIUS server and asynchronously provides the AirGroup

parameters for the client device including shared user, role, and location.

In the CLI

To configure a RADIUS server with DRP parameters:

(Instant AP)(config)# wlan auth-server <profile-name>

(Instant AP)(Auth Server <profile-name>)# ip <host>

(Instant AP)(Auth Server <profile-name>)# key <key>

(Instant AP)(Auth Server <profile-name>)# port <port>

(Instant AP)(Auth Server <profile-name>)# acctport <port>

(Instant AP)(Auth Server <profile-name>)# nas-id <NAS-ID>

(Instant AP)(Auth Server <profile-name>)# nas-ip <NAS-IP-address>

(Instant AP)(Auth Server <profile-name>)# timeout <seconds>

(Instant AP)(Auth Server <profile-name>)# retry-count <number>

(Instant AP)(Auth Server <profile-name>)# rfc3576

(Instant AP)(Auth Server <profile-name>)# rfc5997 {auth-only|acct-only}

(Instant AP)(Auth Server <profile-name>)# deadtime <minutes>

Dell Networking W-Series Instant 6.5.1.0-4.3.1.0 | User Guide Authentication and User Management | 155