4RF Aprisa SR+ User Manual - page 186
184 | Managing the Radio
Aprisa SR+ User Manual 1.5.3
Security > RADIUS
This page displays the current settings for the Security RADIUS.
RADIUS - Remote Authentication Dial In User Service
RADIUS is a client / server system that secures the Aprisa SR+ radio network against unauthorized access.
It is based on open standard RFCs: RFC 2865/6, 5607, 5080 and 2869.
It is a protocol for remote user Authorization, Authentication and Accounting. A standard RADIUS interface
is typically used in a pulled model in which the request (authentication query) originates from the radio
(RADIUS client or Network Access Server (NAS)) attached to a network and the response is sent from the
queried RADIUS servers.
When a radio client is configured to use RADIUS, any user of the radio client presents authentication
information to the radio client. This might be with a CLI login prompt or window login (SuperVisor/NMS),
where the user is expected to enter their username and password.
RADIUS servers are responsible for receiving user connection requests, authenticating the user, and then
returning all configuration information necessary for the client to deliver service to the user. A RADIUS
server can act as a proxy client to other RADIUS servers or other kinds of authentication servers.
User accounting information is delivered from the RADIUS client/NAS to a RADIUS accounting server during
RADIUS authentication and authorization operation and transaction.
Transactions between the RADIUS client/NAS and RADIUS AAA server/accounting server are authenticated
through the use of a shared secret, which is never sent over the network.
For a RADIUS server to respond to the Aprisa SR+ radio, it must configured with and respond to the
following
Management-Privilege-level
attributes:
Admin Level = 4
Engineer Level = 3
Technician Level = 2
Viewer Level = 1