beautypg.com

Overview, Radius implementation guidelines – Allied Telesis AT-S105 User Manual

Page 180

background image

Chapter 15: RADIUS Authentication Protocol

180

Overview

RADIUS (Remote Authentication Dial In User Services) is an
authentication protocol for enhancing the security of your network. The
protocol transfers the task of authenticating network access from a
network device to an authentication protocol server.

The AT-S105 Management Software comes with RADIUS client software.
You can use the client software together with 802.1x port-based network
access control. To control which end users and end nodes can send
packets through the switch, see Chapter 14, “Configuring 802.1x Port-
based Network Access Control” on page 175.

RADIUS

Implementation

Guidelines

The following guidelines apply when using the RADIUS protocol.

ˆ

You must install RADIUS server software on a network server or
management station. Authentication protocol server software is not
available from Allied Telesis.

ˆ

The RADIUS server must communicate with the switch through a port
that is an untagged member of the Default VLAN and is configured for
Forced-Authorized (802.1x) port control.

ˆ

If the RADIUS server is on a different subnet from switch, be sure to
specify a System Default Gateway in the IP Setup Page, so that the
switch and server can communicate with each other via the gateway.
See “Configuring an IP Address, Subnet Mask and Gateway Address”
on page 24.

ˆ

You need to specify the user name and password combinations when
configuring the RADIUS server software on the authentication server.
The maximum length of a user name or password is 12 alphanumeric
characters.

Note

This manual does not explain how to configure RADIUS server
software. Refer to the documentation that comes with the RADIUS
server software for instructions.

ˆ

You must activate the RADIUS client software on the switch using the
AT-S105 Management Software and configure the settings. This is
explained in “Configuring the RADIUS Client” on page 181. By default,
authentication protocol is disabled.

Note

For more information on the RADIUS authentication protocol, refer
to the RFC 2865 standard.

See also other documents in the category Allied Telesis Computer hardware: