EPICenter Concepts and Solutions Guide
219
D Configuring RADIUS for EPICenter
Authentication
This appendix describes in detail how to set up an external RADIUS server to provide authentication
services for EPICenter users, when EPICenter is configured to act as a RADIUS client.
The following example is a step-by-step walk-through example using Microsoft Active Directory and
Internet Authentication Service. This example also leads you through the process of setting up a VSA
for passing role information.
Step 1. Create an Active Directory User Group for
EPICenter Users
Within Active Directory, create one or more User Groups. If you have multiple roles within EPICenter,
and you want to authenticate users for any of those roles, you will need a Group for each EPICenter
role.
1 To add a group, select the appropriate domain under Active Directory Users and Computers, then
click Users, then New> Group
Figure 96: Adding a Group
2 Type the same group name in each of the two group name fields. Scope should be Global, type
should be Security. Click OK.
3 If you want to authenticate EPICenter users with more than one role, repeat these steps to create a
group that corresponds to each EPICenter role you use. For example, if you want to authenticate
users with an Admin role and users with a Monitor role, you would create a group for each role
type—such as EPIC-Admin and EPIC-Monitor.
To Next Page
Loading...
Need help?
General
