How do I configure a remote authentication server?

Purpose

You can configure LDAP (including Active Directory), RADIUS, and TACACS server instances in NSP to connect with remote authentication servers. What are the remote authentication server parameters? describes the parameters you encounter for each authentication protocol.

Steps
 

Open Users and System Security.

Click png1.png More Actions, Settings.

In the Users and System Security Settings form, click Authentication Sources.

In the Authentication Sources form, click + Server.

In the Select Protocol form, type a name for the server in the Displayed Name field.

Specify the authentication protocol for the server in the Select Protocol menu.

Additional authentication parameters appear in the GUI, based on the protocol you selected; see What are the remote authentication server parameters?.

Do one of the following:

  • For an LDAP server, complete Step 8.

  • For a RADIUS server, complete Step 9.

  • For a TACACS server, complete Step 10.

Configure the LDAP server parameters:

  1. Configure the connection, user search, and group search parameters using the values specific to the remote LDAP server.

  2. Update the NSP TLS certificate for LDAP remote authentication; see How do I update the NSP TLS certificate for remote authentication?.

  3. Click Test Connection to verify the LDAP server protocol, IP address/hostname, and port reachability. This ensures that the server is online and accessible from your network.

  4. Turn on the Enable LDAP Authentication option if you want NSP to connect to the LDAP server immediately.

Configure the RADIUS server parameters:

  1. Configure the connection parameters using the values specific to the remote RADIUS server.

  2. Click Test Connection to read the IP address/hostname from the Address field and verify the RADIUS server reachability with a ping test. This ensures that the server is online and accessible from your network.

  3. Turn on the Enable RADIUS Server parameter if you want NSP to connect to the RADIUS server immediately.

10 

Configure the TACACS server parameters:

  1. Configure the connection parameters using the values specific to the remote TACACS server.

  2. Click Test Connection to read the IP address/hostname from the Address field and verify the TACACS server reachability with a ping test. This ensures that the server is online and accessible from your network.

  3. Turn on the Enable TACACS Server parameter if you want NSP to connect to the TACACS server immediately.

11 

Click Submit to save the server configuration.

End of steps