Manualshelf

Installation guide

ManualsBrandsMotorola ManualsComputer equipmentRFS7000 Series
361362363364365366367368369370
Switch Security
6-77
6.9.4 Configuring Radius Authentication and Accounting
Deploy one or more Radius servers to configure user authentication, EAP type and the user database. Radius
accounting supplies administrators with user data as Radius sessions are started and terminated.
To define the Radius authentication and accounting configuration:
1. Select Security > Radius Server from the main menu.
2. Select the Authentication tab.
3. Refer to the Authentication field to define the following Radius authentication information:
EAP and Auth Type Specify the EAP and Authentication type for the Radius server.
PEAP uses a TLS layer on top of EAP as a carrier for other
EAP switches. PEAP is an ideal choice for networks using
legacy EAP authentication methods.
TTLS is similar to EAP-TLS, but the client authentication
portion of the protocol is not performed until after a secure
transport tunnel has been established. This allows EAP-
TTLS to protect legacy authentication methods used by
some Radius servers.
Auth Data Source Use Auth Data Source drop-down menu to select the data source
for the local Radius server.
•If Local is selected, the switch’s internal user database
serves as the data source for user authentication. Refer to
the Users and Groups tabs to define user and group
permissions for the switch’s local Radius server.
•If LDAP is selected, the switch uses the data within an
LDAP server.