2 using radius authentication – ZyXEL Communications 480 User Manual

Prestige 480 ISDN Router

System Security

9-3

9.2 Using RADIUS Authentication

Your Prestige has a built-in dial-up user list; however, the number of users that can be stored
locally is limited due to memory constraints. If you have more users than what the Prestige can
store locally, use an external RADIUS (Remote Authentication Dial-In User Service) server that
provides authentication service for unlimited number of users.

9.2.1 Installing a RADIUS Server

To use RADIUS authentication, you need to have a UNIX or Windows NT machine on your
network as the RADIUS server, as well as the RADIUS software itself.

You can obtain the RADIUS server software, along with documentation, at

http://www.livingston.com/Tech/FTP/pub-le-radius.shtml

or

ftp://ftp.livingston.com/pub/le/radius

/

Follow the included instructions to install the software on your server.

After you install the server software, you will need to edit the

dictionary

file in the RADIUS

configuration directory (usually

/etc/raddb

). Using any text editor, add the following lines to the

dictionary

file:

# Zyxel proprietary attributes
ATTRIBUTE Zyxel-Callback-Option 192 int0eger
VALUE Zyxel-Callback-Option None 0
VALUE Zyxel-Callback-Option Optional 1
VALUE Zyxel-Callback-Option Mandatory 2

# Callback phone number source
ATTRIBUTE Zyxel-Callback-Phone-Source 193 integer
VALUE Zyxel-Callback-Phone-Source Preconfigured 0
VALUE Zyxel-Callback-Phone-Source User 1

These changes add the support for CLID authentication, as described in the following section.