Initially, when authentication is enabled, at least one method should be enabled. If both of them are enabled, the external (RADIUS) authentication will be tried first. If this fails, the SBC will fall back and try local authentication. The login attempt will be rejected if both the attempts failed.

On the SBC main screen, go to Administration > Accounting and Logs > Radius Authentication. The Radius Authentication window is displayed.

Radius Authentication

The following fields are displayed:

Radius Authentication Parameters

Parameter

Description

Radius Server Ip

Specifies the remote Radius server IP used for authentication.

Radius Server Port

Specifies the port on which RADIUS server is listening for authentication requests.

Radius Nas Ip

Specifies the IP address of the network access server (NAS) which is requesting for authentication. This is usually the SBC management IP.

Radius Shared Secret

Specifies the shared secret key between the RADIUS server and the SBC. This should be configured same as the key configured in the RADIUS server. The value ranges from 8 - 128 characters and the default value is 123456789abcdef0.

Click Save to save the changes made.

 

Additional topics in this section:

Info

Each SBC user is provided a private home directory for SFTP and files used by the CLI (refer to "Unique Home Directories" section on the page Managing SBC Core Users and Accounts). When using Radius authentication, users are only known to the Radius server and therefore do not have private home directories on the SBC. To create these home directories, you must also create Radius users on the SBC (refer to Local Authentication - CLI).

  • No labels