User manual

ManualsBrandsRaritan ManualsNetworkingIPR-M1

54 IP-REACH USER MANUAL

• Secondary Server IP: Optional. Enter the IP address of a secondary RADIUS server. If the primary

server becomes unavailable, IP-Reach will redirect its RADIUS requests to this secondary or backup

server.

• Server UDP Port: Sets the ports used by the RADIUS server.

- Standard 1812 & 1813 (default): Uses port 1812 for Authentication and port 1813 for

Accounting. These are the ports most often used by modern RADIUS systems.

- Legacy Ports 1645 & 1646: Uses port 1645 for Authentication and port 1646 for

Accounting. These ports are most often used by older RADIUS systems.

- Custom UDP Ports: Enables the administrator to enter specific port numbers for the

RADIUS server.

- Authentication Port: Enter port number used by RADIUS for Authentication.

• Accounting Port: Enter the port number used by RADIUS for Accounting.

• Enable RADIUS Accounting: Turns the RADIUS accounting function on or off.

- NO (default): RADIUS accounting is operational. Log in and log out information for each

user will be recorded only in IP-Reach’s built-in event log.

- YES: RADIUS accounting is operational. Log in and log out information for each user will

be recorded in IP-Reach’s built-in event log, and then IP-Reach will send a RADIUS

accounting message to the RADIUS server.

Note:

If RADIUS Authentication has been enabled, the choices previously made for

Secret Server, Confirm Secret, Primary Server IP, and Secondary Server IP will also

accommodate RADIUS Accounting. If these selections have not been made during a

previous enabling of RADIUS Authentication, they must now be selected for RADIUS

Accounting.

Press <Ctrl+S> to save changes or <Esc> to cancel changes, and return to the Configuration Menu.

Saved Radius Configuration changes will not take effect until IP-Reach is restarted.

RADIUS Database

Of User Names &

Passwords Used

-Reach

Database of User

Names and

Passwords Used

RADIUS Authentication is set to N

RADIUS Authentication is set to YES, but

the user name and password entered

exactly matches a use

name and password

in the

-Reach

database of profiles.

uses permissions

set for each user by the system

administrator on the User Account

Settings Screen (Figure 57)

RADIUS Authentication is set to YE

user name and password entered does not match any use

name and password in the

-Reach

database of profiles.

-Reach has no predefined permission

set for each user, since it is NOT using the IP-Reach

database of user profiles created by the system

administrator on the User Account

Settings Screen (Figure 57)

Default RADIUS Permission

Must be set on the RADIUS

Configuration Screen

For ALL RADIUS user names and passwords

-Rea

uses the initial

permission assumptions as set under Default RADIUS Permissions

– User permissions (Net, Modem, PC Share)

–

dmin permissions (Net, Modem, PC Share)

– None, must use RADIUS attributes

-Reach