12 AAA Settings tab

2.Enter the radius server’s IP address in the IP Address field.

3.Enter the TCP port, if necessary, used by the Radius server in the TCP Port field. Default is 1812.

4.Select the authentication policy (PAP or CHAP) from the Authentication Type field. Default is CHAP.

5.Enter the shared secret in the Shared Secret and Confirm Secret fields.

6.Enter the timeout timer value (in seconds) that specifies the amount of time to wait between retries when the server is busy in the Timeout (Sec) field.

Default is 3 seconds.

7.Enter the number of attempts to be made to reach a server before assuming it is unreachable in the Attempts field.

Default is 3 attempts.

8.Click OK to return to the AAA Settings tab.

The Radius Servers and Sequence table displays the following information:

Network Address — The network address of the Radius server.

Authentication Type — The authentication type (such as, CHAP).

TCP Port — The TCP port number of the Radius server.

TimeOut (Sec) — The timeout value in seconds specified when sending an authentication request to the server. Default is 3.

Attempts — The number of attempts made to reach a server before determining it is unreachable. Default is 3.

Configuring LDAP server authentication

NOTE

You cannot configure multiple Active Directory groups (domains) for the LDAP server.

NOTE

You cannot enter Domain\User_Name in the Management application dialog box for LDAP server authentication.

If you are using an LDAP server for authentication, make the following preparations first:

Make sure that the LDAP server you want to use is on the network that the Management application manages.

Have the IP address of the server available.

Know the TCP port you are using. The LDAP server uses Transport Layer Security (TLS). LDAP over TLS generally uses port 389. If security is enabled the port number is 636. Check with the LDAP server administrator if you are not sure which port to specify.

Know how long you want to wait between attempts (default is 3 seconds) to reach the server if it is busy. This is expressed as a timeout value in seconds. Values are between 1 and 15.

Determine how many attempts (default is 3 times) to make to reach the server before stopping and assuming it is unreachable. Values are between 1 and 5.

382

Brocade Network Advisor IP User Manual

 

53-1003056-01

Page 434
Image 434
Brocade Communications Systems IP250 user manual Configuring Ldap server authentication