Supported RADIUS Server Architectures
64 ECLYPSE User Guide
Credential
Database B
and C
This is the ECLYPSE controller A’s credential database and ECLYPSE
controller B’s credential database. If EC-gfxProgram users are to connect to
either of these controllers through the EC-Net
AX
station, the controller’s
credential database must have the credentials for EC-Net
AX
station’s
RestService. Each credential database must also have the credentials for
each user that will login to ECLYPSE controller A (for example,
administrators, direct connection EC-gfxProgram users, ENVYSION users,
etc.). See User Management on page 85.
ECLYPSE-Based Centralized Credential Authentication
The credential database is centralized in an ECLYPSE controller that is configured as a
RADIUS server, to authenticate login requests made directly to it, and by other subscribed
ECLYPSE controllers. This architecture is ideal when you are not using EC-Net
AX
on your
network.
EC-Net
AX
cannot subscribe to a remote RADIUS server. Due to this, you will have
to add user credentials to both the ECLYPSE RADIUS server and to the EC-Net
AX
station. For this reason, if you are using EC-Net
AX
on your network, it is best to
centralize credential authentication by using this EC-Net
AX
station as a RADIUS
server. See EC-NetAX-Based Centralized Credential Authentication on page 65.
EC-gfxProgram
EC-Net
AX
A
ECLYPSE
Controller B
Cache B
ECLYPSE
Controller A
RADIUS A
Key:
RADIUS
RADIUS Server
Credential Database
1 2 2
3
3
Cache
Cached Credential
Database
Optional
Figure 7-2: ECLYPSE-Based Centralized Credential Authentication
This authentication method has the following components.
This is the login credential used by an EC-gfxProgram user to connect to
the EC-Net
AX
station. This credential is managed in the EC-Net
AX
User
Service.
This is the login credential used by an EC-gfxProgram user to connect to
any ECLYPSE controller. This credential is managed in this ECLYPSE
controller A’s User Management RADIUS server credential database.
To Next Page
Loading...