Manualshelf

Specifications

ManualsBrandsMotorola ManualsNetworkingWiNG 5.6
151152153154155156157158159160
4-50 Motorola RF Switch System Reference Guide
9. Refer to the Advanced field to define the authentication protocol used with the Radius Server.
10.Click OK to save the changes made to this screen.
11.Click Cancel to revert back to the last saved configuration and move back to the
Network > Wireless LANs > Edit screen.
Configuring an External Radius Server for Optimal Switch Support
The switch’s external Radius Server should be configured with Motorola RF Switch specific attributes to best
utilize the user privilege values assignable by the Radius Server. The following two values should be
configured on the external Server for optimal use with the switch:
Motorola user privilege values
User login source
Configuring Motorola Specific Radius Server User Privilege Values
The following recommended Radius Server user privilege settings specify access privilege levels for those
accessing the switch managed network. To define user privilege values, assign the following attributes in
the external Radius Server:
1. Set the attribute number to 1 and its type as "integer."
2. Define the following possible decimal values for user access permissions:
a. Set the Monitor Role value to 1 (read-only access to the switch).
b. Set the Helpdesk Role value to 2 (helpdesk/support access to the switch).
c. Set the Nwadmin Role value to 4 (wired and wireless access to the switch).
d. Set the Sysadmin Role value to 8 (system administrator access).
e. Set the WebAdmin Role value to 16 (guest user application access).
f. Set the Superuser Role value to 32768 (grants full read/write access to the switch).
3. Specify multiple privileges (for a single user) by specifying different attributes as needed. The privilege
values can be ORed and specified once. For example, if a user needs monitor (read-only) and helpdesk
PAP PAP - Password Authentication Protocol sends a username and password over a
network to a server that compares the username and password to a table of
authorized users. If the username and password are matched in the table, server
access is authorized.
CHAP CHAP is an encrypted authentication method based on Microsoft's challenge/
response authentication protocol.
DSCP/TOS Optionally mark packets with a DiffServ CodePoint (DSCP) in its header. The DSCP
value is stored in the first 6 bits of the Type of Service (ToS) field that is part of the
standard IP header. The DCSP values are associated with a forwarding treatment
called Per Hop Behaviors (PHB). Service can be provisioned (if necessary) by
assigning a DCSP point code from 1 - 6.