Configuring RADIUS Server Proxy Settings

Procedure

  1. Select the Proxy tab, and ensure the Activate RADIUS Server Policy button remains selected.

    A user‘s access request is sent to a proxy server if it cannot be authenticated by local RADIUS resources. The proxy server checks the information in the user access request, and either accepts or rejects the request. If the proxy server accepts the request, it returns configuration information specifying the type of connection service required to authenticate the user.

    The RADIUS proxy appears to act as a RADIUS server to the NAS, whereas the proxy appears to act as a RADIUS client to the RADIUS server.

    When the access point‘s RADIUS server receives a request for a user name containing a realm, the server references a table of configured realms. If the realm is known, the server proxies the request to the RADIUS server. The behavior of the proxying server is configuration-dependent on most servers. In addition, the proxying server can be configured to add, remove or rewrite requests when they are proxied.

    Click to expand in new window
    RADIUS Server Policy Screen - Add/Edit - Proxy Tab
    GUID-F516FF41-595A-459C-A049-14DADF82E1DC-low.png
  2. Enter the Proxy Retry Delay as a value from 5 -10 seconds.

    This is the interval the RADIUS server waits before making an additional connection attempt. The default delay interval is 5 seconds.

  3. Enter the Proxy Retry Count as a value from 3 - 6.

    This is the number of retries sent to the proxy server before giving up the request. The default retry count is 3 attempts.

  4. Select the + Add Row button to add a RADIUS server proxy realm name and network address.

    To delete a proxy server entry, select the Delete icon on the right-hand side of the table.

  5. Enter the realm name in the Realm Name field.

    The realm name cannot exceed 50 characters. When the access point's RADIUS server receives a request for a user name, the server references a table of realms. If the realm is known, the server proxies the request to the RADIUS server.

  6. Enter the proxy server IP address in the IP Address field.

    This is the address of server checking the information in the user access request. The proxy server either accepts or rejects the request on behalf of the RADIUS server.

  7. Enter the TCP/IP Port Number for the server used as a data source for the proxy server.

    Use the spinner to select a value from 1024 - 65535. The default port is 1812.

  8. Enter the RADIUS client's Shared Secret for authenticating the RADIUS proxy.

    Select the Show checkbox to expose the shared secret's actual character string. Otherwise, the shared secret is displayed as a string of asterisks (*).

  9. Click OK to save the configuration.

    Click Reset to revert to the last saved configuration.