Linking a SSL VPN 680 to a RADIUS Server

Home‎ > ‎Barracuda‎ > ‎

Linking a SSL VPN 680 to a RADIUS Server

Contents

1 Overview:
2 Radius Setup:
1. 2.1 Configuration:
2. 2.2 Authentication Schemes:

Overview:

Please note Securid - Adding Devices to Radius for how to setup your securID box to link with the Barracuda.

Radius Setup:

The following steps will get it so your users can log in using their RSA token keys instead of the built in passwords.

Configuration:

From the SSLADMIN account, Under the Access Control Tab, select Configuration

Then scroll down to the Radius section.

Assuming a basic setup with your RSA device, there are not many changes you need to make here,

Radius Server: The IP Address of the radius box
Authentication Port: (default) The TCP port the radius box is listening over
Accounting Port: (default) The TCP port the radius box is listening over
Authentication Method: "PAP"
Radius Attributes: "User-Name = %USERNAME%" and "User-Password = %PASSWORD%"
Reject Challenge: "No"

Authentication Schemes:

Under the Access Control Tab, under the Authentication Schemes sub-tab, create the following:

Name: RSA
Available Modules: RADIUS
Available Policies: (all policies who should use the Radius server)

Note that if this is a new server, an you dont have any policies defined yet, continue on with that, and come back later and fill this in.

Then under Authentication Schemes, the new RSA scheme will be created. To make sure that users authenticate with it, select its More... button, Increase Priority so that it will be the top of the list.

You can also disable WebDAV by selecting its More... and selecting Disable.

Comments

net	Search this site