A RADIUS authentication server operates by using the User Datagram Protocol (UDP). The RADIUS server receives a user's connection request, authenticates the user, and then returns the configuration information needed by the system that delivers services to the user. The RADIUS server is connected to a network access server (NAS). When the NAS sends an Access-Request, the RADIUS server searches its database for the user name and other details. If the user name does not exist in the database, the RADIUS server immediately sends an Access-Reject message, or it can load a default profile on the MAS. In RADIUS, authentication and authorization are coupled together. If the user details are authenticated, the RADIUS server returns an Access-Accept response. It also sends a list of attribute-value pairs that describe the parameters to be used for that particular session.
1. In NetScaler MAS, navigate to System > Authentication > RADIUS.
2. On the RADIUS page, click Add.
3. On the Create RADIUS Server page, set the parameters, and click Create to add the server to the list of RADIUS authentication servers.
4. The following parameters are mandatory to create the RADIUS server:
5. Click Details to expand the section and set the additional parameters.
You can provide more optional details while addinga RADIUS server. Some of the additional parameters you can enter are NAS details, vendor information, attribute information, and type of password authentication.