RADIUS

For authentication to work, the client's transmission must go through OpenRG, and reach the back-end server that performs the actual authentication. The wireless client contacts the access point, which in turn communicates with the Remote Authentication Dial-in User Service (RADIUS) server. The RADIUS server verifies the client's credentials to determine whether the device is authorized to connect to the LAN. If the RADIUS server accepts the client, the server responds by exchanging data with OpenRG, including security keys for subsequent encrypted sessions.

Figure 11.48: RADIUS Authentication

To configure the RADIUS authentication mechanism, perform the following steps:

1. Click the 'RADIUS' icon in the 'Advanced' screen of the Web-based Management. The RADIUS screen will appear (see figure 11.49).
2. Specify the following parameters:

   RADIUS Client

   Select this check-box to enable RADIUS client authentication.

   Server IP

   Type in the RADIUS server's IP address.

   Server Port

   Type in the RADIUS server's port.

   Shared Secret

   Type in your shared secret.

Figure 11.49: RADIUS Configuration