RADIUS security

You can use a Remote Authentication Dial In User Service (RADIUS) server to secure the following types of access to the RUCKUS Layer 2 Switch or Layer 3 Switch:

  • Telnet access
  • SSH access
  • Web management access
  • TLS support
  • Access to the Privileged EXEC level and CONFIG levels of the CLI

When RADIUS authentication is implemented, the RUCKUS device consults a RADIUS server to verify user names and passwords. You can optionally configure RADIUS authorization, in which the RUCKUS device consults a list of commands supplied by the RADIUS server to determine whether a user can issue the entered command.

FastIron supports TLS encryption for RADIUS server and client authentication.

RADIUS accounting causes the RUCKUS device to log information on a RADIUS accounting server when specified events occur on the device.