User Guide

Chapter 2. Initialization Tasks

1. Local — The management system authenticates the administrator with locally

configured login ID and password (default method).

2. RADIUS — A RADIUS server installed in the network authenticates the

administrator with a login ID that is configured with the administrator account and

a password that is remotely assigned according to the applicable RADIUS-

supported authentication method.

The super administrator can use the Authentication Methods object of the

management system GUI to configure the RADIUS servers that support non-local

authentication methods for the plain administrators. Each administrator is assigned to

one of the available RADIUS servers. To access this object, click Authentication

Methods under Management Access and then click RADIUS Server.

To add a RADIUS configuration:

1. On the RADIUS Server Configuration window, click New. The RADIUS

Configurations (Add) window appears (Figure 12), displaying the following fields:

o Server IP Address: IP address of the RADIUS server you are adding.

o Authentication Port: UDP port for the authentication requests (default: 1812).

o Accounting Port: UDP port for the accounting requests (default: 1813).

Currently not used.

o Timeout (seconds): Time interval (in seconds) between consecutive

retransmissions of the same request from the OmniAccess 3500 NLG gateway to

the RADIUS server if the gateway receives no reply from the RADIUS server

(default: 30).

o Shared Secret: Authentication key used for all RADIUS exchanges between the

gateway and the RADIUS server. The key must match the authentication

method set for the RADIUS daemon.

o Authentication Method: Authentication method supported by the RADIUS

server. Available options: <CHAP> (challenge-based) and <PAP> (simple

password).

2. Click Save.