Quick Reference Guide
ProSafe VPN Firewall 50 FVS338 Reference Manual
VPN Firewall and Network Management 6-11
v1.0, January 2010
The chosen authentication protocol must be configured on the external server and on the
authenticating client devices.
To configure external authentication:
1. Select Users from the main menu and External Authentication from the submenu. The
External Users screen will display.
2. Select the External Authentication tab. The External Authentication screen will display (see
Figure 6-4 on page 6-12).
Table 6-1.Authentication Protocols
Authentication
Protocol
Description
RADIUS A network-validated PAP or CHAP password-based authentication method that
functions with Remote Authentication Dial In User Service (RADIUS).
MIAS A network-validated PAP or CHAP password-based authentication method that
functions with Microsoft Internet Authentication Service (MIAS), which is a component
of Microsoft Windows 2003 Server.
WiKID WiKID Systems is a PAP or CHAP key-based two-factor authentication method that
functions with public key cryptography. The client sends an encrypted PIN to the
WiKID server and receives a one-time pass code with a short expiration period. The
client logs in with the pass code. See Appendix C, “Two Factor Authentication” for
more on WiKID authentication.
PAP Password Authentication Protocol (PAP) is a simple protocol in which the client sends
a password in clear text.
CHAP Challenge Handshake Authentication Protocol (CHAP) executes a three-way
handshake in which the client and server trade challenge messages, each responding
with a hash of the other’s challenge message that is calculated using a shared secret
value.