Chapter 10: Managing the RADIUS Servers
Prerequisites
220
Prerequisites
To run the RADIUS Server, you need the following:
•
At least one RADIUS-compatible client
The RADIUS Server will listen for RADIUS requests from RADIUS clients.
Therefore, at least one RADIUS-compatible client is required. A RADIUS-
compatible client may be a router, communication server, VPN, firewall, or
an application.
•
SafeWord Authentication, Authorization and Accounting (AAA) Server
The RADIUS authentication requests received by the RADIUS Server from
the RADIUS client(s) must be forwarded to the SafeWord AAA server dae-
mon.
The RADIUS Server issues a request that is formatted according to the
conventions of the authentication protocol, and transmits it across the net-
work. If an authentications server is listening for such requests, it can be
serviced.
•
RADIUS users registered in the SafeWord User database
All users that need to be authenticated by SafeWord must be registered in
the SafeWord User database. Users must be registered in the SafeWord
database if the Authentication Broker is not going to be used.
SafeWord
RADIUS
configuration
files
The RADIUS Server has five configuration files:
•
clients
•
dictionary
•
users
•
radius.cfg
•
authfile
You can modify the above files from
Start > Programs > Aladdin > SafeWord >
Configuration > RADIUS Server Configuration.
The RADIUS configuration files, clients, and the
radius.cfg
can be found in
<Install_Dir>\SERVERS\RADIUS\RADIUSServer
, and can be edited manually,
if needed.
Authorization
and
configuration
groups
The RADIUS Server supports authorization and configuration groups named in
the SafeWord databases.
Creating an ACL entry and role for RADIUS
The following steps will take you through the process of adding an ACL entry
and role for your RADIUS users.