User manual

Authentication Server Type

From the drop-down menu, enable the remote server authentication either by LDAP or the

RADIUS server (or select “None” to disable the remote authentication support). Before

proceeding with subsequent settings on this screen, check with your network administrator for

the availability of either an LDAP server or a RADIUS server.

Directory Server Using LDAP

SSL Access: Select to enable SSL access of the LDAP authentication. NOTE: Make sure your

LDAP server supports SSL, and remember, too, that you need to install a distinct set of

certicates — ldapcert.crt and ldapkey.pem — on the switch by uploading them through the

Security screen. Normally these certicates are generated by the directory server itself.

Port: Enter the port number used in LDAP authentication. By default, it is set to Port 389.

LDAP Server: Enter the IP address of the directory server.

Second Server (if any): If there is a second LDAP server available for authentication, enter its

IP address here.

User Base Search DN: Make an appropriate entry here, which is characteristic of the LDAP

server you use for authentication. The default is cn=users, dc=abc, dc=kle, dc=com, but you

should enter your own. (If unsure what to enter, contact your LDAP server administrator.)

RADIUS Server

Port: Enter the port number used in RADIUS authentication. By default, it is set to Port 1812.

RADIUS Server: Enter the IP address of the RADIUS server.

Second Server (if any): If there is a second RADIUS server available for authentication, enter

its IP address here.

Password Authentication Protocol: Select either “CHAP” or “PAP.”

RADIUS Secret: Specify the RADIUS secret (or Shared Secret) between the switch and the

RADIUS server. The RADIUS secret is a text string used as a password between the RADIUS

client and the RADIUS server. Request the RADIUS secret from your server administrator.

MANAGEMENT OVER A BROWSER