Configuring remote access users

The RADIUS protocol

The RADIUS protocol is documented in an Internet Engineering Task Force (IETF) Request for Comment (RFC), specifically RFC 2058.

Client/Server Model – A Network Access Server (NAS) operates as a client of RADIUS. The client is responsible for passing user information to designated RADIUS servers and then acting on the response that is returned. RADIUS servers are responsible for receiving user connection requests, authenticating the user, and then returning all configuration information necessary for the client to deliver service to the user. A RADIUS server can act as a proxy client to other RADIUS servers or other kinds of authentication servers.

Network Security – Transactions between the client and RADIUS server are authenticated through the use of a shared secret, which is never sent over the network. Additionally, user passwords are sent encrypted between the client and RADIUS server to eliminate the possibility that someone snooping on an unsecure network could determine a user’s password.

Flexible Authentication Mechanisms – The RADIUS server can support a variety of methods to authenticate a user; when given the user name and the original user password, it can support PPP, PAP or CHAP, UNIX login, and other authentication mechanisms, some of which include the use of cryptographically strong tokens. These tokens use a two-factor approach to authentication: the first is a Personal Identification Number (PIN); the second is a value taken from the token. An example of a two-factor authentication mechanism is the SecurID™ token card and ACE/Server AccessManager by RSA Security.

Some RADIUS server implementations use several files to manage the database of information needed to provide Client authentication. A number of these files must be modified to use the VSUs as an NAS within a RADIUS environment.

Add (RADIUS/ACE server)

Authenticating (secret) password

Enter the authenticating password followed by a retype.

RADIUS server data

IP Address - Enter the IP address of the RADIUS/ACE server.

UDP Port - Enter the UDP port of the server. The default value is 1645. Check your RADIUS server documentation to verify the value for this field.

126 Avaya VPNmanager Configuration Guide Release 3.7

Page 125 Page 127
Page 126
Image 126
Avaya 3.7 manual Radius protocol, Add RADIUS/ACE server, Authenticating secret password, Radius server data
Page 125 Page 127

3.7 specifications

Avaya 3.7 represents a significant evolution in unified communications technology, designed to enhance collaboration and streamline communication workflows for organizations of all sizes. As a cornerstone of Avaya's offerings, this version incorporates a range of features and improvements that cater to contemporary business needs, emphasizing flexibility, reliability, and seamless integration.

One of the most notable features of Avaya 3.7 is its robust call management capabilities. The platform allows users to manage calls effectively through a user-friendly interface, enabling intuitive functionalities such as drag-and-drop call handling, call forwarding, and conference calling. These features help employees stay connected, facilitating better communication and teamwork across departments.

In terms of mobility, Avaya 3.7 supports mobile applications that allow users to access the system remotely. This is particularly advantageous for businesses with a workforce that relies on remote or hybrid work models. The mobile integration ensures users can make and receive calls, check voicemail, and manage their schedules directly from their smartphones, maintaining productivity regardless of location.

The system also embraces advanced collaboration tools, such as video conferencing and instant messaging. These features promote a more dynamic interaction environment, fostering real-time communication among team members. Video conferencing capabilities allow for high-definition video quality and reliable connectivity, making virtual meetings more engaging and effective.

Security is another critical characteristic of Avaya 3.7. The platform includes enhanced encryption protocols to protect sensitive communications and ensure data integrity. With cybersecurity remaining a top concern for businesses, Avaya has prioritized the security of its communications solutions, safeguarding organizations' information against potential threats.

Furthermore, Avaya 3.7 benefits from the incorporation of AI and analytics. These technologies provide businesses with valuable insights into communication patterns and user behavior, enabling them to optimize their processes. The analytics can help identify areas for improvement and drive informed decision-making, thus enhancing overall efficiency.

Interoperability with existing systems is another hallmark of Avaya 3.7. The platform easily integrates with various applications and services, allowing businesses to leverage their current technology investments and create a cohesive communication ecosystem.

In summary, Avaya 3.7 stands out as a comprehensive communication solution that addresses the modern demands of the workplace. With its advanced call management features, mobility support, collaboration tools, strong security measures, and integration capabilities, Avaya 3.7 positions itself as a vital asset for organizations aiming to enhance their communication strategies and drive business success.
Top Page Image Contents