Installation guide
6-72 Motorola RF Switch System Reference Guide
2. Select the Authentication tab.
3. Define whether IPSec VPN user authentication is conducted using a Radius Server (by selecting the
Radius radio button), by a user-defined set of names and password (by selecting the User Table radio
button) or if no authentication is used for credential verification (by selecting the No Authentication
radio button).
4. Enter a NAS ID for the NAS port.
The profile database on the Radius server consists of user profiles for each connected network access
server (NAS) port. Each profile is matched to a username representing a physical port. When the switch
authorizes users, it queries the user profile database using a username representative of the physical
NAS port making the connection.
5. If the Radius Server radio button is selected, the following server information displays within the
Radius tab:
6. Select an existing Radius Server and click the Edit button to modify its designation as a primary or
secondary Radius Server, IP address, port, NAS ID and shared secret password.
Motorola recommends only modifying an existing Radius Server when its current configuration is no
longer viable for providing user authentication. Otherwise, define a new Radius Server.
7. Select an existing server and click the Delete button to remove it from list of available Radius Servers.
Only delete a server if its configuration does not provide a valid authentication medium.
Type Displays whether this target server is a Primary or Secondary Radius Server.
Server IP Address Displays the IP address of the server acting as the data source for the Radius
server.
Port Displays the TCP/IP port number for the server acting as a data source for the
Radius. The default port is 1812.
Shared Secret Displays a shared secret used for each host or subnet authenticating against the
Radius server. The shared secret can be up to 7 characters in length.