Note: When configuring the RADIUS server, the Filter-ID format for the users on the server should have the following format "raritan:G{GroupOnSX}:D{DialbackNumber}".
You can use Remote Authentication Dial-In User Service (RADIUS) to authenticate SX II users instead of local authentication.
RADIUS is an AAA (authentication, authorization, and accounting) protocol for network access applications.
Click User Management > Authentication Settings to open the Authentication Settings page.
Click the RADIUS radio button to enable the RADIUS section of the page. The section expands. If it does not, click the section header to expand it.
In the Primary Radius Server and Secondary Radius Server fields, type the IP address of your primary and optional secondary remote authentication servers, respectively.
In the Shared Secret fields, type the server secret used for authentication.
The shared secret is a character string that must be known by both the SX II and the RADIUS server to allow them to communicate securely. It is essentially a password.
The Authentication Port default is port is 1812 but can be changed as required.
The Accounting Port default port is 1813 but can be changed as required.
The Timeout is recorded in seconds and default timeout is 1 second, but can be changed as required.
The timeout is the length of time the SX II waits for a response from the RADIUS server before sending another authentication request.
The default number of retries is 3 Retries.
This is the number of times the SX II will send an authentication request to the RADIUS server.
Choose the Global Authentication Type from among the options in the drop-down list:
PAP - With PAP, passwords are sent as plain text. PAP is not interactive. The user name and password are sent as one data package once a connection is established, rather than the server sending a login prompt and waiting for a response.
CHAP - With CHAP, authentication can be requested by the server at any time. CHAP provides more security than PAP.