36
The access point uses the secondary accounting server if a failure is detected in
the primary accounting server. It continues to use the secondary accounting
server until it fails, in which case it returns to sending data to the primary
accounting server.
In the RADIUS Authentication section, enter the required parameters for a
primary and secondary RADIUS authentication server. When you are finished
configuring items, click
Apply.
The RADIUS Authentication parameters are described below.
IP Address
—The address of the server.
Port
—The network (UDP) port of the server used for messages. The port
defaults to 1812 (1813 for RADIUS Accounting) and must match the port
configured on the RADIUS server.
Key
—The encryption key is a shared ASCII string that is used to authenticate
logon access for the client. The maximum length is 255 characters. Do not use
blank spaces in the string. The key must be configured the same on both the
access point and the RADIUS server. The Authentication and Accounting
RADIUS servers can have different secret keys.
Timeout
—The number of seconds the access point waits for a reply from the
RADIUS server before it resends the request.
Retransmit attempts
—The number of times the access point will try to
authenticate logon access.
RADIUS Servers Assign Client VLAN ID in
—Select the VLAN ID format that
matches your RADIUS server VLAN ID format.
In the RADIUS Accounting section, click the
Enable
radio button, then enter
required parameters for a primary and secondary RADIUS accounting server.
When you are finished configuring items, click
Apply
.
RADIUS Accounting Update Interval
—This is the interval in seconds
between accounting updates sent to the RADIUS accounting server
.
Accounting Log Options—
This option controls which clients generate
accounting logs. If set to RADIUS Authenticated Clients Only, only those
clients that successfully complete 802.1x Authentication will generate
accounting logs. The default is for all authenticated clients to generate
accounting logs.
