The router will utilize a Remote Authentication Dial In User Service (RADIUS) server or servers to determine administration authorization.
Complete the steps in Configuring Advanced Authentication Options.
Select from the Authentication Mode drop-down menu.
Selecting Ban IP Address causes the router to track how many times an IP address has unsuccessfully attempted to log in. After a certain amount of unsuccessful attempts, the router will then block that IP address for several minutes before allowing it to try again.
Set the Server Timeout value (using seconds) in the RADIUS Settings section. This setting specifies the amount of time the Ericsson Cradlepoint router waits before ending the authentication session with the RADIUS server.
In the Server 1 area, configure Server 1.
Enter an address for the RADIUS server in the Server Address field. The server address can be either an IP address or a Fully Qualified Domain Name (FQDN).
Note
If you are using a FQDN, ensure that the Ericsson Cradlepoint device can resolve the DNS name for the RADIUS by using the Ping tool under > > . Run the same test when configuring an IP address to verify connectivity to that IP address.
Set the port value used on the RADIUS server in the Port field. The default port is UDP port 1812 but can be changed if the RADIUS server is configured to use a different port number.
Enter the Shared Secret password configured on the RADIUS server.
Repeat steps 1–3 for a Server 2. Configuring a second server is optional, but it is recommended to provide uninterrupted device access if communication is lost with Server 1.
The Ericsson Cradlepoint router requires the RADIUS server to provide users managing the router full administrative rights. All other privileges will fail to allow authentications to the router.
This is done by making sure your RADIUS server is set to provide the return-attribute with a value set to . See your RADIUS vendor’s documentation for details on how to implement this return attribute.