Summary
Remote Authentication Dial In User Service (RADIUS) is an industry-standard method to authenticate user login requests. The SMS server supports the use of RADIUS to authenticate logon requests. While authentication is performed on the RADIUS server, the user role and its access rights are maintained on the SMS server. If the RADIUS server is unavailable, SMS can authenticate the user locally. SMS does not permit you to manage the SMS user account on the RADIUS server. Most notably you can only modify the user password from the SMS server; you cannot modify it on the RADIUS server.
Note: When SMS is configure to operate in HA mode and SMS client authentication occurs through a RADIUS server, the SMS HA configuration must make use of the shared virtual management IP address and that IP address must be set in the RADIUS server as a location from which to accept authentication requests.
Details
Procedure:
- Log in to the SMS from a client.
- On the SMS toolbar, navigate to Admin->Authentication and Authorization.
- Select the Authentication option.
- In the Authentication Configuration area, select the RADIUS tab.
- To configure the primary RADIUS server click Edit in the Primary RADIUS Server area. To configure a backup RADIUS server click Edit in the Backup RADIUS Server area.
- The Edit RADIUS Server dialog box opens, enter the required information:
- Click OK to return to the Authentication screen.
| RADIUS Server Options | |
| Setting | Description |
| IP Address | The IP address of the RADIUS server. |
| Port | The port on the RADIUS server that listens for authentication requests. |
| Secret/Confirm Secret | The RADIUS secret set by the RADIUS server administrator, to be used by each RADIUS client, including the SMS server. |
| Timeout | The RADIUS server timeout, in seconds. |
Reference: SMS User Guide
