User Guide

Chapter 6 Configuring authentication 235

Nortel Secure Network Access Switch 4050 User Guide

Before you begin

Before you configure authentication on the Nortel SNAS 4050, you must

complete the following tasks:

1 Create the Nortel SNAS 4050 domain, if applicable (see “Creating a domain

using the CLI” on page 121 or “Creating a domain using the SREM” on

page 151).

If you ran the quick setup wizard during initial setup, Domain 1 has been

created on the Nortel SNAS 4050.

2 Create and configure the groups (see “Configuring groups and profiles” on

page 191).

3 For external authentication servers, create or modify settings on the external

server as required.

a A free RADIUS server may require specific settings in the clients.conf

file and the Users file to match group parameters you may have

configured on the Nortel SNAS 4050.

b A Steel-belted RADIUS server requires specific settings in the vendor.ini

file, master dictionary, and vendor dictionary.

c An MS IAS RADIUS server may require vendor parameters to be

configured on the Microsoft Management Console (MMC).

4 To configure external authentication, you require the following information

about the authentication server configuration:

a RADIUS servers:

— server IP address

— port number used for the service

— shared secret

— Vendor-Id attribute

Note: With Nortel Secure Network Access Switch

Software Release 1.0, you cannot configure the Nortel SNA solution to

have more than one domain.