Nortel Networks 4050 User Manual

Chapter 6 Configuring authentication 243

Nortel Secure Network Access Switch 4050 User Guide

You can perform the following configuration tasks:

•

“Adding the RADIUS authentication method using the CLI” on page 243

•

“Modifying RADIUS configuration settings using the CLI” on page 245

•

“Managing RADIUS authentication servers using the CLI” on page 247

•

“Configuring session timeout using the CLI” on page 249

Adding the RADIUS authentication method using the CLI

The command to create the authentication ID launches a wizard. When prompted,
enter the following information. You can later modify all settings for the specific
RADIUS configuration (see

“Configuring authentication methods using the CLI”

on page 239

and

“Modifying RADIUS configuration settings using the CLI” on

page 245

•

authentication type — options are

radius|ldap|local

. Enter

radius

•

authentication method name (

auth name

) — a string that specifies a name

for the method. After you have defined a name for the method, you can use
either the method name or the

auth ID

to access the Authentication menu.

In future releases of the Nortel SNAS 4050 software, you will be able to
reference this string in a client filter, so that authentication to the server in
question becomes a condition for access rights for a group.

•

IP address of the RADIUS server.

•

port on which the RADIUS server is listening — the port number configured
on the RADIUS server to specify the port used by the service. The default is
1812.

•

shared secret — a unique shared secret configured on the RADIUS server that
authenticates the Nortel SNAS 4050 to the RADIUS server.

•

vendor ID for group — corresponds to the vendor-specific attribute used by
the RADIUS server to send group names to the Nortel SNAS 4050. The
default Vendor-Id is 1872 (Alteon).

To use a standard RADIUS attribute rather than the vendor-specific one, set
the vendor ID to 0 (see also vendor type).