Remote Authentication Dial-in User Service (RADIUS) is an AAA (authentication, authorization, and accounting) protocol for network access applications.
To use the RADIUS authentication protocol:
Click User Management > Authentication Settings to open the Authentication Settings page.
Click the RADIUS radio button to enable the RADIUS section of the page.
Click the icon to expand the RADIUS section of the page.
In the Primary Radius Server and Secondary Radius Server fields, type the IP address of your primary and optional secondary remote authentication servers, respectively (up to 256 characters).
In the Shared Secret fields, type the server secret used for authentication (up to 128 characters).
The shared secret is a character string that must be known by both the Dominion KSX and the RADIUS server to allow them to communicate securely. It is essentially a password.
The Authentication Port default is port is 1812 but can be changed as required.
The Accounting Port default port is 1813 but can be changed as required.
The Timeout is recorded in seconds and default timeout is 1 second, but can be changed as required.
The timeout is the length of time the Dominion KSX waits for a response from the RADIUS server before sending another authentication request.
The default number of retries is 3 Retries.
This is the number of times the Dominion KSX will send an authentication request to the RADIUS server.
Choose the Global Authentication Type from among the options in the drop-down list:
PAP - With PAP, passwords are sent as plain text. PAP is not interactive. The user name and password are sent as one data package once a connection is established, rather than the server sending a login prompt and waiting for a response.
CHAP - With CHAP, authentication can be requested by the server at any time. CHAP provides more security than PAP.
icon to expand the RADIUS section of the page.