Specifying Default RADIUS Authentication Server Settings
By default, KeyControl uses the RADIUS server settings specified here when you create a KeyControl-managed user account and specify RADIUS as the authentication type. You can override the default RADIUS server settings when you create the user account.
Changes to the default settings are not applied to existing accounts. If you want to change the RADIUS settings for existing KeyControl-managed user accounts, see Changing KeyControl Account Details as a Security Administrator.
-
Log into the KeyControl webGUI using an account with Security Admin privileges.
- In the top menu bar, click Settings.
- In the General Settings section, click Authentication.
-
In the Type drop-down, select RADIUS and specify the options you want to use.
OptionsField
Description
Server
The RADIUS server IP address or hostname.
Port
The port number for the RADIUS server.
Shared Secret
The Shared Secret defined for secure communication with the RADIUS server.
Authentication Method
Select the authentication method you want to use. KeyControl supports:
- PAP (Password Authentication Protocol)
- CHAP (Challenge Handshake Authentication Protocol)
- MS-CHAP (Microsoft Challenge Handshake Authentication Protocol) v1 and v2.
- To test your RADIUS server, click Test RADIUS Server. KeyControl displays an error message if there is a problem or a confirmation message if the server is available and the Shared Secret is correct.
- When you are finished, click Apply.