Using the RADIUS Server:
RADIUS (Remote Authentication Dial In User Service) is a protocol specified by the Internet
Engineering Task Force (IETF) working group. There are two specifications that make up the
RADIUS protocol suite: Authentication and Accounting. These specifications aim to centralize
authentication, configuration and accounting for dial-in services to an independent server. The
RADIUS protocol exists in several implementations such as freeRADIUS, openRADIUS or RADIUS
on UNIX systems. The RADIUS protocol itself is well specified and tested. We can give a
recommendation for all products listed above, especially for the freeRADIUS implementation.
NOTE:
Currently, the DKVM-IP1 does not support challenge/response. An Access Challenge
response is seen and evaluated as an Access Reject.
To access a remote device using the RADIUS protocol you will need to log in first. You will be
asked to specify your username and password. The RADIUS server will read your input data
(Authentication) and the DKVM-IP1 will look for your profile (Authorization). The profile defines (or
limits) your actions and may differ depending on your specific situation. If there is no such profile,
your access via RADIUS authentication will be refused. In terms of the remote activity mechanism,
logging in via RADIUS works similarly to the Host Console; if there is no activity for half an hour,
your connection to the DKVM-IP1 will be aborted and closed.
Server
Enter either the IP address or the hostname of the RADIUS Server to connect to. For the
hostname, the DKVM-IP1 needs to have a DNS server configured.
Shared Secret
A shared secret is a text string that serves as a password between the RADIUS client and
RADIUS server. In this case, the DKVM-IP1 serves as a RADIUS client. A shared secret is
used to verify that RADIUS messages are sent by a RADIUS-enabled device that is configured
with the same shared secret to verify that the RADIUS message has not been modified during
transit (message integrity). For the shared secret, you can use any standard alphanumeric or
special characters. A shared secret may consist of up to 128 characters in length and may
contain both lowercase and uppercase letters (A-Z,a-z), numerals (0-9), and other symbols (all
characters not defined as letters or numerals) such as an exclamation mark (!) or an asterisk
(*).
Authentication Port
Enter the port the RADIUS server listens to for authentication requests. The default port is
1812.
109