Digi TS8 Using Radius to Authenticate Users, What is RADIUS?, Radius Components, Radius Table Key

Page 62

Using RADIUS to Authenticate Users

This section provides a description of RADIUS and explains how to configure PortServer TS 8/16 to use RADIUS.

What is RADIUS?

RADIUS (remote authentication dial-in user service) is a method of maintaining a database of profiles of dial-in users. These profiles can include login and password information, as well as other user attributes.

RADIUS Components

RADIUS requires two components, an authentication host server and client protocols. The PortServer TS 8/16 implements the client protocol. A host must implement the authentication server application.

RADIUS Table Key

The numbers in the following tables have the following meaning:

#

Meaning

0

This attribute must not be present.

 

 

0+

Zero or more instances of this attribute may be

 

present.

 

 

0-1

Zero or one instance of this attribute may be

 

present.

1Exactly one instance of this attribute must be present.

RADIUS Attributes (RFC 2138) Supported

The following attributes are supported in the Digi PortServer TS 8/16 RADIUS client implementation.

Request

Accept

 

Reject

Challenge

#

Attribute

 

 

 

 

 

 

 

1

0

0

 

0

1

User-Name

 

 

 

 

 

 

 

0-1

0

0

 

0

2

User-Password

 

 

 

 

 

 

 

0-1

0

0

 

0

3

CHAP-Password

 

 

 

 

 

 

 

0-1

0

0

 

0

4

NAS-IP-Address

 

 

 

 

 

 

 

0-1

0

0

 

0

5

NAS-Port

 

 

 

 

 

 

 

0-1

0-1

0

 

0

6

Service-Type

 

 

 

 

 

 

 

0-1

0-1

0

 

0

7

Framed-Protocol

 

 

 

 

 

 

 

0-1

0-1

0

 

0

8

Framed-IP-Address

 

 

 

 

 

 

 

0-1

0-1

0

 

0

9

Framed-IP-Netmask

 

 

 

 

 

 

 

0

0-1

0

 

0

10

Framed-Routing

 

 

 

 

 

 

 

0

0+

0

 

0

11

Filter-Id

 

 

 

 

 

 

 

0

0-1

0

 

0

12

Framed-MTU

 

 

 

 

 

 

 

0+

0+

0

 

0

13

Framed Compression

 

 

 

 

 

 

 

0+

0+

0

 

0

14

Login-IP-Host

 

 

 

 

 

 

 

0

0-1

0

 

0

15

Login-Service

 

 

 

 

 

 

 

0

0-1

0

 

0

16

Login-TCP-Port

 

 

 

 

 

 

 

0

0-1

0

 

0-1

27

Session-Timeout

 

 

 

 

 

 

 

0

0-1

0

 

0-1

28

Idle-Timeout

 

 

 

 

 

 

 

12-4

Using RADIUS to Authenticate Users

Page 61 Page 63
Image 62
Page 61 Page 63
Contents
PortServer TS 8/16 Configuration and Administration Guide Page Contents Chapter Configuring Users Page Introduction This ChapterSetup Overview Supported Devices About Entering Commands on the Command LineAbout This Guide Access Resource CD Card Other Documents in the LibraryConfiguring the PortServer TS 8/16 from the Web Interface About Configuration MethodsConfiguring the PortServer TS 8/16 from a Telnet Session Downloading a Configuration FileAccessing the Command Line from a Telnet Session Configuration PrerequisitesLogging On As Root from the Command Line Accessing the Configuration from the Web InterfaceConfiguring the IP Address Options for Configuring the IP Address and Mask OptionsStarting Point Configuring the Ethernet Interface with DPA-RemoteProcedure Configuring the IP Address Using Ping-ARP Manual Configuration Procedure Configuring the Ethernet Interface from the Command LineConfiguring an IP Address using Dhcp and Rarp Manual Configuration ExampleConfiguring an IP Address using Dhcp and Rarp Configuring Ports for RealPort Configuration Options What is RealPort?Configuring the RealPort Software About RealPortConfiguring Ports Web Interface Configuring Ports for RealPort Command Line ExampleConfiguring Ports for Printers Configuration Considerations Tips for telnet and rsh Printing Configuring Ports for Printers Web InterfaceConfiguring Printer Connections Command Line Related InformationConfiguring Printer Connections Command Line Configuring a Port for Direct-Access Printing Configuring a Port for Direct-Access Printing Configuring Ports for Terminals Port Defaults Configuring Ports for Terminals Web InterfaceConfiguring Ports for Terminals Command Line Configuring Typical PC Connections About Computer ConnectionsAbout Computer Connections Configuring Ports for Modems Tips on Configuring a Modem Configuring Ports for Modems Web Interface Before You Begin Configuring PPP Configuring PPP Connections Web Interface Configuring Inbound PPP Connections Command Line Configuring Inbound PPP Connections Example Configuring Outbound PPP Connections Command Line Set user name=name n1=telephone-number Configuring IP Routing Types of Routing What is RoutingIntroduction to Routing About RIP Routing Updates PortServer TS 8/16 Participation in RIP Updates Example Route Using a PPP Link Configuring Static RoutesExample Route Using the Ethernet Interface Configuring Dynamic Routes Using RIP Example Dynamic RoutesConfiguring Proxy ARP Configuring Proxy ARP Configuring Autoconnection About Autoconnection Configuring a Port for Autoconnection Web InterfaceConfiguring Autoconnection By Port Command Line Configuring a User for Autoconnection Web Interface Configuring a User for Autoconnection Command LineConfiguring a User for Autoconnection Command Line Configuring Console Management About Console Management Configuring Console Management Web InterfaceConfiguring Console Management Command Line Example SSH2 and Menu Access Example Alternate IP Addresses 10-4 Configuring Security Features Controlling Access to the PortServer TS 8/16 Configuration Controlling Access to Inbound PortsControlling Access to Outbound Ports Controlling Access to the PortServer TS 8/16 Command LineRadius Components Using Radius to Authenticate UsersWhat is RADIUS? Radius Table KeyHow Radius Works Configuring Radius Web InterfaceRadius Accounting Attributes RFC Configuring Radius Command Line Radius Command Line Configuration ExampleIssuing User Passwords Using a Public Key Configuring SSH Version 2 for Secure CommunicationPassword Protection Configuring DNS About the Domain Name System Procedure for Using a Host File Configuration ProceduresProcedure for Using a Name Server 13-4 Configuring Snmp About Snmp and the PortServer TS 8/16 Agent Configuration Example Configuration Procedure Web InterfaceConfiguration Procedure Command Line 14-4 Managing the OS and Configuration Upgrading the OS Firmware Web Interface Upgrading the OS Firmware Command Line Prerequisite TaskRules for Editing a Configuration file Configuring PortServer TS 8/16 from a Remote HostWhen To Use Remote Configuration Copying the Configuration File to a HostCpconf fromhost=199.250.121.12cnfg-fle Resetting the Configuration to Defaults RadiusConfiguring Users Configuration Methods About Configuring UsersCommon User Features Configuring a User Web Interface Configuring a User Command Line Examples Configuration Examples Configuration Notes Terminal Server Configuration Without RealPortConfiguration IllustrationTerminal Server Configuration Using Autoconnection Terminal Server Configuration Using RealPort Dial-In PPP Connection Using Radius Dial-In PPP Connection Using Radius PortServer TS 8/16 Troubleshooting Symptom PortServer TS 8/16 Does Not Boot IntroductionSymptom Cannot Telnet to the PortServer TS 8/16 AssumptionsSymptom Trouble Accessing a Port Running PortServer TS 8/16 Hardware DiagnosticsRunning PortServer TS 8/16 Post Procedure Running the Post Using the LEDsProcedure Running the Post from a Terminal Troubleshooting Tftp Problems Verifying Tftp on a Unix SystemFront Panel Procedure Resetting PortServer TS 8/16 Configuration to DefaultsCommand Line Procedure Verifying the PortServer TS 8/16 IP Address 17-9 Checking for Duplicate IP Addresses Pinging an IP Address Verifying the Network Cabling HP-UX Verifying the RealPort Process Verifying the RealPort ProcessAIX Verifying the RealPort Process Linux Verifying the RealPort ProcessSolaris Verifying the RealPort Process Windows NT Verifying the RealPort ServiceWindows 2000 Verifying the RealPort Service Checking and Changing Port Configuration RealPortDigi Contact Information Digi International Bren Road East Minnetonka, MN
Top Page Image Contents