Chapter 4 BCM50 Security Policies and Accounts and Privileges 79
BCM50 Administration Guide
Account
management
drop down menu Specifies the method used for authenticating users when they
log in. Options are Local Authentication and RADIUS. If
RADIUS is selected, you must also select the Enabled check
box.
Server priority Primary
Secondary
Specifies which RADIUS server will be used as the primary
server for authentication, and which server will be used as a
secondary server to authenticate users when the primary server
is unavailable.
Server name alphanumeric Name of the RADIUS server.
Server IP address <IP address> IP address of the RADIUS server.
Server Port numeric Port number of the RADIUS server.
Enabled checkbox When selected, specifies that RADIUS authentication will be
used. You must also select this check box before the BCM will
use RADIUS authentication.
Configuration
Server shared secret alphanumeric Key required for the BCM to communicate with the RADIUS
server. Nortel recommends that the key be at least 64
characters in length.
Server message
timeout
numeric Length of time to wait for the server to respond to a request for
authentication before timing out. Nortel recommends a setting
of 2.
Server retries numeric Number of times to retry connecting with the primary server
before using an alternate means of authenticating the user.
Nortel recommends a setting of 2.
Statistics
Last used read-only The date and time of the last attempted connection with the
RADIUS server.
Access accept read-only The number of Access Accept messages exchanged between
the RADIUS server and the BCM50.
Access reject read-only The number of Access Reject messages exchanged between
the RADIUS server and the BCM50.
No response read-only The number of No Response messages exchanged between
the RADIUS server and the BCM50.
Session Management Policy tab
Session time out
(min.)
minutes Specifies the number of minutes a logged-in user account can
be inactive before the system ends the session and logs out the
account. If this field is left blank, the session is only ended when
the user logs off.
Active sessions
User ID read-only Displays the user ID of the active session.
IP address read-only Displays the IP address of the active session.
Login date read-only Displays the login date of the active session.
SSL and SSH Policy tab
SSL
Table 17 Security Policies fields (Continued)
Attribute Value Description