Dell PowerConnect W Clearpass 100 Software 3.7 Deployment Guide - Page 98
Configuring a Proxy RADIUS External Authentication Server
View all Dell PowerConnect W Clearpass 100 Software manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 98 highlights
LDAP Filter - an optional LDAP filter expression that may be used to restrict the matching, over and above the standard filtering applied by usernames. For example, specifying the expression (objectClass=user) will ensure that only LDAP objects with the specified type will be matched. Advanced Options - additional options controlling authentication against the directory. For information about additional LDAP configuration options, including enabling Novell eDirectory support, see "LDAP Module Configuration" in the Reference chapter. The following advanced options may be required in several common situations and are documented below: ldap_opt_referrals = yes If set to "yes", the directory may provide an LDAP referral from the directory to answer the request. This option must be set to "no" if you are contacting an Active Directory LDAP server. access_attr_used_for_allow = yes access_attr = empty To configure the authorization method for an LDAP external authentication server, see "Configuring Authorization for External Authentication Servers." See "Configuring Properties for External Authentication Servers " for a description of properties in this chapter. For additional settings, refer to the LDAP module options. See "LDAP Module Configuration" in the Reference chapter. Note that to set an advanced option for an LDAP external authentication server, specify the LDAP module option name without the "ldap." prefix. Configuring a Proxy RADIUS External Authentication Server For Proxy RADIUS external authentication servers, the following fields are displayed in the Edit Authentication Server form. RADIUS Server and Port Number - the hostname or IP address of the RADIUS server, with the corresponding port number of the RADIUS authentication service (typically 1812, but can also be 1645). Shared Secret - the shared secret used by the Amigopod Visitor Management Appliance as a client of the proxy RADIUS server. Advanced Options - additional options controlling authentication against the proxy server. No advanced options are currently defined. To configure the authorization method for a Proxy RADIUS external authentication server, see "Configuring Authorization for External Authentication Servers." Configuring a Local Certificate Authority External Authentication Server For Local Certificate Authority authentication servers, the following fields are displayed in the Edit Authentication Server form. 98 | RADIUS Services Amigopod 3.7 | Deployment Guide