Specifications
7-7
Cisco NAC Appliance - Clean Access Manager Configuration Guide
OL-28003-01
Chapter 7 User Management: Configuring Authentication Servers
Adding an Authentication Provider
Step 2 From the Authentication Type dropdown menu, choose Radius.
Figure 7-4 Add RADIUS Auth Server
Step 3
Provider Name—Type a unique name for this authentication provider. Enter a meaningful or
recognizable name if web login users will be able to select providers from the web login page.
Step 4 Server Name—The fully qualified host name (e.g., auth.cisco.com) or IP address of the RADIUS
authentication server.
Step 5 Server Port—The port number on which the RADIUS server is listening.
Step 6 Radius Type—The RADIUS authentication method. Supported methods include: EAPMD5, PAP,
CHAP, MSCHAP, and MSCHAP2.
Step 7 Timeout (sec)—The timeout value for the authentication request.
Step 8 Default Role—Choose the user role assigned to users authenticated by this provider. This default role
is used if not overridden by a role assignment based on MAC address or IP address, or if RADIUS
mapping rules do not result in a successful match.
Step 9 Shared Secret—The RADIUS shared secret bound to the specified client’s IP address.
Step 10 NAS-Identifier—The NAS-Identifier value to be sent with all RADIUS authentication packets. Either
a NAS-Identifier or a NAS-IP-Address must be specified to send the packets.
Step 11 NAS-IP-Address—The NAS-IP-Address value to be sent with all RADIUS authentication packets.
Either a NAS-IP-Address or a NAS-Identifier must be specified to send the packets.