Cisco Cisco Firepower Management Center 4000

If you mistype the name or password of the test user, the test fails even if the server configuration is 
correct. To verify that the server configuration is correct, click 

 without entering user information in 

the 

 field first. If that succeeds, supply a user name and password to test with the 

specific user. 

Admin

In the 

 and 

 fields, type the user name and password for the user whose credentials 

should be used to validate access to the RADIUS server.

For example, to test to see if you can retrieve the 

jsmith

 user credentials at our example company, type 

jsmith.

Select 

 and click 

. 

A message appears, either indicating success of the test or detailing what settings are missing or need to 
be corrected.

If the test succeeds, click 

.

The Login Authentication page appears, with the new object listed.

To enable RADIUS authentication using the object on an appliance, you must apply a system policy with 
that object enabled to the appliance. For more information, see 

Any

This section provides examples of RADIUS server authentication objects to show how FireSIGHT 
System RADIUS authentication features can be used. See the following sections for more information:

Any

The following figure illustrates a sample RADIUS login authentication object for a server running 
FreeRADIUS with an IP address of 10.10.10.98. Note that the connection uses port 1812 for access, and 
note that connections to the server time out after 30 seconds of disuse, then retry three times before 
attempting to connect to a backup authentication server.

This example illustrates important aspects of RADIUS user role configuration: 

Users 

ewharton

 and 

gsand

 are granted administrative access to FireSIGHT System appliances where 

this authentication object is enabled. 

The user 

cbronte

 is granted Maintenance User access to FireSIGHT System appliances where this 

authentication object is enabled.