beautypg.com

Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 513

background image

Brocade Mobility Access Point System Reference Guide

503

53-1003100-01

7

6. Refer to the following configured RADIUS Authentication details:

7. Select a server ID from the table and select Edit, or select Add to create a new policy.

Server Id

Displays the numerical server index (1-6) for the accounting server when added to the list available
to the access point.

Host

Displays the IP address or hostname of the RADIUS authentication server.

Port

Displays the port on which the RADIUS server listens to traffic within the access point managed
network. The port range is 1 - 65,535. The default port is 1812.

Server Type

Displays the type of AAA server in use as either Host, onboard-self or onboard-controller.

Request Proxy Mode

Displays whether a request is transmitted directly through the server or proxied through the Virtual
Controller AP or RF Domain manager.

Request Attempts

Displays the number of attempts a client can retransmit a missed frame to the RADIUS server
before it times out of the authentication session. The available range is from 1 - 10. The default is 3.

Request Timeout

Displays the time from 1 - 60 seconds for the access point’s re-transmission of request packets.
The default is 3 seconds. If this time is exceeded, the authentication session is terminated.

DSCP

Displays the DSCP value as a 6-bit parameter in the header of every IP packet used for packet
classification. The valid range is from 0 - 63, with a default value of 46.

NAI Routing Enable

Displays NAI routing status. AAA servers identify clients using the NAI. The NAI is a character string
in the format of an E-mail address as either user or user@ but it need not be a valid E-mail address
or a fully qualified domain name. NAI can be used either in a specific or generic form. The specific
form, which must contain the user portion and may contain the @ portion, identifies a single user.
Each user still needs a unique security association, but these associations can be stored on a AAA
server. The original purpose of NAI was to support roaming between dialup ISPs. Using NAI, each
ISP need not have all the accounts for all of its roaming partners in a single RADIUS database.
RADIUS servers can proxy requests to remote servers for each user credential.

NAC Enable

A green check mark defines NAC as enabled, while a red X defines NAC disabled with this AAA
policy.

See also other documents in the category Brocade Computer Accessories: