7-47
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
Chapter7 Setting Up and Managing User Accounts Advanced User Authentication Settings
Setting Juniper RADIUS Parameters for a User The Juniper RADIUS parameters appear only if all the following are true:
•A AAA client has been configured to use RADIUS (Juniper) in Network
Configuration.
•The Per-user TACACS+/RADIUS Attributes check box is selected under
Advanced Options in the Interface Configuration section.
•User-level RADIUS (Juniper) attributes you intend to apply have been
enabled under RADIUS (Juniper) in the Interface Configuration section.
Juniper RADIUS represents only the Juniper proprietary attributes. You must
configure both the IETF RADIUS and Juniper RADIUS attributes. Proprietary
attributes override IETF attributes.
Note To hide or display Juniper RADIUS attributes, see the “Setting Protocol
Configuration Options for RADIUS (Juniper)” section on page 3-19.
To configure and enable Juniper RADIUS attributes to be applied as an
authorization for the current user, follow these steps:
Step 1 Perform Steps 1 through 3 of the “Adding a Basic User Account” section on
page 7-5.
Result: The User Setup Edit page opens. The username being added or edited
appears at the top of the page.
Step 2 Before configuring Juniper RADIUS attributes, be sure your IETF RADIUS
attributes are configured properly. For more information about setting IETF
RADIUS attributes, see the “Setting IETF RADIUS Parameters for a User”
section on page 7-37.
Step 3 In the Juniper RADIUS Attributes table, t o specify the attributes that should be
authorized for the user, follow these steps:
a. Select the check box next to the particular attribute.
b. Further define the authorization for that attribute in the box next to it.
c. Continue to select and define attributes, as applicable.
For more information about attributes, see Appendix D, “RADIUS
Attributes,” or your AAA client documentation.