To open this window, select RADIUS in the Select Authentication Server window.
The following table describes the fields and settings used to edit server RADIUS information.
|
Item |
Description |
|---|---|
|
Authentication Protocol |
Specify a RADIUS protocol to use.
|
|
Host Name |
Specify a name of the RADIUS server. You can specify ASCII code characters, hyphens (-), and periods (.). |
|
Secret |
Specify a RADIUS secret key used for the PAP authentication or the CHAP authentication. You can specify ASCII code characters and the following symbols: ! # $ % & ' ( ) * + - . = @ \ ^ _ | |
|
Re-enter Secret |
Re-enter the RADIUS secret key to confirm your entry. You can specify ASCII code characters and the following symbols: ! # $ % & ' ( ) * + - . = @ \ ^ _ | |
|
NAS Address |
Specify an identifier for the RADIUS server to find SVP.
|
|
Port Number |
Specify a port number of the RADIUS server. |
|
Timeout |
Specify the number of seconds before connection to the RADIUS server times out. |
|
Number of Retries |
Specify the retry times when the connection to the RADIUS server fails. |
|
Secondary Server |
Specify whether to use a secondary RADIUS server and a secondary LDAP server.
|
|
Secondary Server - Host Name |
Specify a host name of the secondary RADIUS server. You can specify ASCII code characters, hyphens (-), and periods (.). If Secondary Server is disabled, this item is not available. |
|
Secondary Server - Port Number |
Specify a port number of the secondary RADIUS server. If Secondary Server is disabled, this item is not available. |
|
External User Group Mapping |
Specify whether to connect an authentication server to an authorization server.
|
| External User Group Mapping - Mapping Method |
Specify a method of external user group mapping.
This item is available when External User Group Mapping is enabled. |
|
External User Group Mapping - Certificate File Name |
Specify a certificate file. Click Browse to find the file. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - DNS Lookup |
Specify whether to search for the LDAP server using the information registered in the SRV records in the DNS server.
For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Authentication Protocol |
Specify an LDAP protocol to use. Available protocols are as follows.
For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Host Name |
Specify a host name of the LDAP server. You can specify ASCII code characters, hyphens (-), and periods (.). For SVP versions earlier than 90-09-21: If DNS Lookup is enabled, or if External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. If DNS Lookup is enabled, this item is not available. |
|
External User Group Mapping - Port Number |
Specify a port number of the LDAP server. For SVP versions earlier than 90-09-21: If DNS Lookup is enabled, or if External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. If DNS Lookup is enabled, this item is not available. |
|
External User Group Mapping - Domain Name |
Specify a domain name of the LDAP server. You can specify ASCII code characters, hyphens (-), and periods (.). For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Base DN |
Specify a base DN to search for users to authenticate. Available characters: Alphanumeric characters (ASCII characters) and all symbols.
If this field is blank, the value specified for the defaultNamingContext attribute of Active Directory is assumed as the base DN. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. To use symbols such as + ; , < = and > in the basedn field, type a backslash (\) before each symbol. When using multiple symbols, each symbol must have a backslash (\) before it. For example, to enter abc++, type abc\+\+. To use backslash (\) , forward slash (/), or quotation mark (") in the basedn field, type a backslash (\) followed by the ASCII code in hex for the symbol:
|
|
External User Group Mapping - Search User's DN |
Search for a user by specifying a DN. Available characters: Alphanumeric characters (ASCII characters) and all symbols. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. To use symbols such as + ; , < = and > in the searchdn field, type a backslash (\) before each symbol. When using multiple symbols, each symbol must have a backslash (\) before it. For example, to enter abc++, type abc\+\+. To use backslash (\) , forward slash (/), or quotation mark (") in the searchdn field, type a backslash (\) followed by the ASCII code in hex for the symbol:
|
|
External User Group Mapping - Password |
Search for a user by specifying his password. Specify the same password that is registered in the LDAP server. You can specify ASCII code characters and the following symbols: ! # $ % & ' ( ) * + - . = @ \ ^ _ | For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Re-enter Password |
Re-enter the password of the user you are searching for to confirm your entry. You can specify ASCII code characters and the following symbols: ! # $ % & ' ( ) * + - . = @ \ ^ _ | If you entered a password in External User Group Mapping - Password, you must specify this item. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Timeout |
Specify the number of seconds before connection to the LDAP server times out. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Retry Interval |
Specify a retry interval in seconds when the connection to the LDAP server fails. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
|
External User Group Mapping - Number of Retries |
Specify retry times when the connection to the LDAP server fails. For SVP versions earlier than 90-09-21: If External User Group Mapping is disabled, this item is not available. For SVP version 90-09-21 and later: If the External User Group Mapping Method is LDAP, this item is available. |
| External User Group Mapping - Attribute Type containing the user group information | Specify the attribute type containing user group information. If you select RADIUS in External User Group Mapping - Mapping Method, this item is available. |
|
Test User Name |
Specify a user name for a server connection test. You can specify ASCII code characters and the following symbols: ! # $ % & ' * + - . / = ? @ ^ _ ` { | } ~ |
|
Password |
Specify a password of the user name for a server connection test. You can specify ASCII code characters and the following symbols: ! # $ % & ' ( ) * + , -. / : ; < = > ? @[ \ ] ^ _` { | } ~ |
|
Server Configuration Test |
Click Check to conduct a server connection test for the authentication server and the authorization server based on the specified settings. |
|
Server Configuration Test - Result |
Displays a result of the server connection test for the authentication server and the authorization server. |