SonicOS 7.0 Access Points

Settings > Creating/Modifying Provisioning Profiles > 5GHz/2.4GHz Radio Basic Settings for Provisioning Profiles > Configuring Radius Server Settings
Table of Contents

Configuring Radius Server Settings

If you selected either WPA2 - EAP or WPA2 - AUTO - EAP in the Wireless Security section, the Radius Server Settings section appears for configuration of a RADIUS server to generate authentication keys. The server has to be configured for this and for communicating with the SonicWall appliance.

To configure Radius Server Settings

  1. Click Radius Server Settings. The Radius Server Settings dialog displays. The options displayed on this dialog depend on the type of SonicPoint/SonicWave.

  2. In the Retries field, enter the number times, from 1 to 10, the firewall attempts to connect before it fails over to the other Radius server.

  3. In the Retry Interval field enter the time, from 0 to 60 seconds, to wait between retries. The default number is 0 or no wait between retries.

  4. Define the Radius Server Settings as described in the following table:

    RADIUS Authentication Server Settings
    Option Description
    Server 1 IP The name/location of your RADIUS authentication server
    Server 1 Port The port on which your RADIUS authentication server communicates with clients and network devices. The default port is 1812
    Server 1 Secret The secret passcode for your RADIUS authentication server
    Server 2 IP The name/location of your backup RADIUS authentication server
    Server 2 Port The port on which your backup RADIUS authentication server communicates with clients and network devices. The default port is 1812
    Server 2 Secret The secret passcode for your backup RADIUS authentication server

  5. If you are using a Radius server to track usage for charging, set up the Radius Accounting Server:

    RADIUS Accounting Server Settings
    Option Description
    Server 1 IP The name/location of your RADIUS accounting server
    Server 1 Port The port on which your RADIUS authentication server communicates with clients and network devices.
    Server 1 Secret The secret passcode for your RADIUS authentication server
    Server 2 The name/location of your backup RADIUS authentication server
    Server 2 Port The port on which your backup RADIUS authentication server communicates with clients and network devices.
    Server 2 Secret The secret passcode for your backup RADIUS authentication server
    RADIUS CoA Support When enabled, the device acts as a RADIUS dynamic authorization server and responds to RADIUS Change-of-Authorization and Disconnect messages sent by the RADIUS server.

  6. To send the NAS identifier to the RADIUS server, select the type from the NAS Identifier Type drop-down menu:

    • Not Included (default)

    • SonicPoint’s Name

    • SonicPoint’s MAC Address

    • SSID – When the SSID option is selected, both the RADIUS authentication message and RADIUS accounting message carry the access point SSID.

  7. To send the NAS IP address to the RADIUS Server, enter the address in the NAS IP Addr field.

  8. Click OK.