DLP- D105 Configure the Node for RADIUS Authentication
Figure 18-2
Click Create to add a RADIUS server to the list of authenticators. The Create RADIUS Server Entry
Step 2
window appears
Figure 18-3
Enter the RADIUS server IP address in the IP Address field. If the node is an end network element
Step 3
(ENE), enter the IP address of the gateway network element (GNE) in this field.
The GNE passes authentication requests from the ENEs in its network to the RADIUS server, which
grants authentication if the GNE is listed as a client on the server.
Because the ENE nodes use the GNE to pass authentication requests to the RADIUS server, you must
Caution
add the ENEs to the RADIUS server individually for authentication. If you do not add the ENE node to
a RADIUS server prior to activating RADIUS authentication, no user will be able to access the node.
Refer to the User Guide for Cisco Secure ACS for Windows Server for more information about adding a
node to a RADIUS server.
Step 4
Enter the shared secret in the Shared Secret field. A shared secret is a text string that serves as a password
between a RADIUS client and RADIUS server.
Step 5
Enter the RADIUS authentication port number in the Authentication Port field. The default port is 1812.
If the node is an ENE, set the authentication port to a number within the range of 1860 to 1869.
Enter the RADIUS accounting port in the Accounting Port field. The default port is 1813. If the node is
Step 6
an ENE, set the accounting port to a number within the range of 1870 to 1879.
Click OK. The RADIUS server is added to the list of RADIUS authenticators.
Step 7
Cisco ONS 15454 SDH Procedure Guide, R7.0
18-6
RADIUS Server Tab
(Figure
18-3).
Create RADIUS Server Entry Window
Chapter 18
DLPs D100 to D199
78-17194-01