|
|
The RADIUS page provides settings for using a RADIUS server for authenticating VPN and network access.
Define the number of times the SonicWALL attempts to contact the RADIUS server in the RADIUS Server Retries field. If the RADIUS server does not respond within the specified number of retries, the connection is dropped. This field can range between 1 and 10, however 3 RADIUS server retries is recommended.
Define the RADIUS Server Timeout in Seconds. The allowable range is 1-60 seconds with a default value of 5.
Specify the settings of the Primary Server in the RADIUS Servers section. An optional secondary RADIUS server can be defined if a backup RADIUS server exists on the network.
Enter the IP address of the RADIUS server in the IP Address field.
Enter the Port Number for the RADIUS server in the Port Number field.
If there is a secondary RADIUS server, enter the appropriate information in the Secondary Server section.
Enter the RADIUS server administrative password or "shared secret" in the Shared Secret field. The alphanumeric Shared Secret can range from 1 to 31 characters in length. The is case sensitive.
You can select the default privileges for all RADIUS users in this section.
Remote Access - Enable this check box if the user accesses the SonicWALL from a remote computer. This option is only available in Standard mode.
Bypass Filters - Enable Bypass Filters if the user can bypass Content Filter settings.
Access to VPNs - Enable the check box if the user can send information over VPN Security Associations.
Access from the VPN Client with XAUTH - Enable the check box if a VPN client is using XAUTH for authentication.
Access from L2TP VPN Client - Allows access by L2TP VPN client.
Access to the Internet when access is restricted - Allows Internet access when VPN access is restricted.
Limited Management Capabilities - By enabling this check box, the user has limited local management access to the SonicWALL Management interface. The access is limited to the following pages: General - Status, Network, Time; Log - View Log, Log Settings, Log Reports; Tools - Restart, Diagnostics minus Tech Support Report
You can test your RADIUS Client user name and password by typing in a valid User name in the User field, and the Password in the Password field. If the validation is successful, the Status messages changes to Success. If the validation fails, the Status message changes to Failure. Once the SonicWALL has been configured, a VPN Security Association requiring RADIUS authentication prompts incoming VPN clients to enter a User Name and Password into a dialogue box.