Configure RADIUS Authentication

You can enable Remote Authentication Dial-In User Service (RADIUS) and configure connections to RADIUS authentication servers. RADIUS can then be used to authenticate remote users logging onto SD-WAN Center.

To use RADIUS, you must specify and configure at least one RADIUS server. Optionally, you configure redundant backup servers, up to a maximum of three RADIUS servers. The servers will be checked sequentially, starting with the server listed first in the  Severs section.

To enable and configure RADIUS authentication

  1. In the SD-WAN Center web interface, click the Administration tab.

  2. Click User/Authentication Settings.  In the RADIUS Authentication section, select the Enable RADIUS Authentication checkbox.  


    TACACS+ authentication will be disabled if it is currently enabled.

  3. In the Timeout field, enter the time interval (in seconds) to wait for an authentication response from the RADIUS server.The time out value should be less than or equal to 10 seconds.

  4. In the Server Key field, enter a secret key to use when connecting to the RADIUS servers.

  5. In the Confirm Server Key fields, reenter the secret key.


    The Timeout and Server Key settings are applied to all configured servers.

  6. Click the plus icon (+) next to Servers to add a new RADIUS server.

  7. In the IP Address field, enter the host IP address for the RADIUS server.

  8. In the Port field, enter the port number at which this RADIUS server will listen. The default port number is 1812.

    localized image

  9. Click Apply.

  10. Click Verify to verify the connection to the RADIUS server. The Verify RADIUS Server Settings dialog box appears.

    localized image

  11. Enter a valid user name and password for the authentication servers, and click Verify.

    To configure additional servers, repeat the steps 6 through 11.

Configure RADIUS Authentication