VSG-1200 User’s Guide

Table 17 System Setting: Authentication (continued)

LABEL

DESCRIPTION

 

 

Authentication Port

Specify the authentication port of the RADIUS server. The common port

 

numbers are 1645 and 1812.

Accounting Port

Specify the accounting port of the RADIUS server. The common port

 

numbers are 1646 and 1813.

Secret Key

Specify a password (up to 31 alphanumeric characters) as the key to be

 

shared between the RADIUS server and the VSG.

 

The key is not sent over the network.

 

Note: This key must be the same on the RADIUS server and

 

the VSG.

Retry Attempts when

Specify the number of times (1 to 3) the VSG resends an authentication

Primary fail

request to the primary and/or secondary RADIUS servers.

Accounting Service

Select Enable from the drop-down list box to activate the accounting

 

feature and enter the time (in minutes) between updates in the Update

 

every field.

 

Select Disable to de-activate the accounting feature.

 

 

Authentication Method

Select either the CHAP or PAP authentication method from the drop-down

 

list box.

Vendor Specific

In the Vendor Code field, specify a number for the vendor ID. This is an

Attribute

IANA (Internet Assigned Numbers Authority) assigned number that

 

identifies the vendor or enterprise. Enter 890 for ZyXEL devices.

 

Select Send VSA together with Authentication Request to set the VSG

 

to include the VSA information in the authentication requests.

Idle-Timeout

The VSG automatically disconnects a computer from the network after a

 

period of inactivity. The subscriber may need to enter the username and

 

password again before access to the network is allowed.

 

Specify the idle timeout between 1 and 1440 minutes. The default is 5

 

minutes.

Current User Information

This feature is applicable for built-in authentication.

Backup

Select this option to back up account information every time interval

 

specified (between 1 and 1440 minutes). The default time interval is 10

 

minutes. The account information includes unused dynamic accounts and

 

accounts that are currently in use.

SSL Login Page Security

Select Enable to activate SSL security upon accessing the login screen so

 

that user names and passwords are encrypted before being transmitted to

 

the VSG.

 

Select Disable to de-activate SSL security for the subscriber login screen.

 

Refer to Chapter 25, “Secure Socket Layer,” on page 189 for more

 

information.

Apply

Click Apply to save the changes.

 

 

6.2.1 Scenario Options

Note: This feature is for built-in authentication method only.

76

Chapter 6 Authentication