Enterasys RoamAbout RBT-4102

To Next Page

To Previous Page

RADIUS

4-10 Advanced Configuration

RADIUS

RemoteAuthenticationDial‐inUserService(RADIUS)isanauthenticationprotocolthatuses

softwarerunningonacentralservertocontrolaccesstoRADIUS‐awaredevicesonthenetwork.

Anauthenticationservercontainsadatabaseofusercredentialsforeachuserthatrequiresaccess

tothenetwork.

AprimaryRADIUSserver

mustbespecifiedfortheRBT‐4102toimplementIEEE802.1xnetwork

accesscontrolandWi‐FiProtectedAccess(WPA)wirelesssecurity.AsecondaryRADIUSserver

mayalsobespecifiedasabackupshouldtheprimaryserverfailorbecomeinaccessible.

Inaddition,theconfiguredRADIUSservercanalsoactas

aRADIUSAccountingserverand

receiveuser‐sessionaccountinginformationfromtheaccesspoint.RADIUSAccountingcanbe

usedtoprovidevaluableinformationonuseractivityinthenetwork.

IfyouareusingMACauthentication,youmustprovidethefollowinginformationtotheRADIUS

ServerNetworkAdministrator:

•MACAddressofyourwireless

client.Thisbecomestheusername,whichiscase‐sensitive

(lower‐case),andintheformat:00‐01‐f4‐ab‐cd‐ef.

• ConfiguretheRADIUSservertoauthenticateusingthedefaultpasswordof

“NOPASSWORD”foralltheMACaddressbasedusernames.

Notes:

• This guide assumes that you already configured RADIUS server(s) to support the access point.

Configuration of RADIUS server software is beyond the scope of this guide, refer to the

documentation provided with the RADIUS server software.

• If you are using RADIUS, it is highly recommended that you assign a static IP address to ensure

that the address doesn’t change via DHCP.

Enterasys RoamAbout RBT-4102 - Radius