Remote Authentication Dial
In User Service Security and
Accounting ServerK (RADIUS 2.0)
Q. What is new in RADIUS 2.0?
A. RADIUS 2.0 supports authentication using Security Dynamics (SDI) SecurID cards, a
powerful scripting language, and many feature enhancements.
Q. What are SDI SecurID cards?
A. SDI is the leading third-party authentication system. It is based on token-generating
cards and an authentication server called ACE/Server. SDI requires a remote user, at
login, to enter a remembered Personal Identification Number (PIN) along with a
card-generated one-time password. This type of security is considered superior to a
remembered password because it relies on a two part process-a password and a physical
token required to be in the user's possession at the time of authentication.
RADIUS 2.0 can now use the Security Dynamics ACE/Server to authenticate remote
users when dialing into any PortMaster Communications Server.
Q. Can SDI support be used for individual users?
A. Yes. The SDI support is a part of the RADIUS user profile and can be used for none,
some or all individual user accounts.
Q. Which Operating System platforms does RADIUS 2.0 support?
A. RADIUS 2.0 runs on nine platforms: SunOS, Solaris, Solaris/x86, HP/UX, AIX, Slackware Linux,
Alpha OSF/1, SGI IRIX, and BSD/OS.
Q. Can RADIUS and the SDI ACE/Server be installed on the same server hardware?
A. Yes - however SDI only supports four operating systems; SunOS, Solaris, HP/UX and
AIX.
Q. What is Scripting Language?
A. With Scripting Language, network administrators can generate simple text-based menu
screens as part of a user's profile. The designated menu appears on the remote user's
screen after successfully logging into a PortMaster Communications Server. Users are then
able to select from a predetermined list of desired network functions. Because the Scripting
Language is defined in the user's profile, customization of menu screens can be configured
on a per-user basis.
Q. How can Scripting Language be applied?
A. With Scripting Language, ISPs can simplify login procedures. Using customized menu
screens, users can select from a list of available network services such as telnet, PPP, or
SLIP at the time of login.
Scripting Language can also be used to display informational messages on a user's screen
at time of login.
Q. Where do the scripts reside?
A. All scripts are defined in the user's profile on the RADIUS server.
Q. What new features are included in RADIUS 2.0?
A. New RADIUS 2.0 features include:
Used to eliminate unwarranted phone line charges
Used to discourage users from staying on-line indefinitely
Used to restrict access to network services greater than 64Kbps
- Prefix and Suffix Support
Efficiently migrates users to new service with little or no administrative burden
- SDN Called Station and Calling Station ID
Used for security auditing of ISDN calls
Used for network planning decisions based on statistical usage data Input/Output
Used to administer user account billing based on usage
Q. Will RADIUS 2.0 support limiting each user to one login?
A. Not in release 2.0.
Q. How do I obtain RADIUS 2.0?
A. RADIUS 2.0 will continue to be free of charge to all Lucent customers. RADIUS
2.0 is available on the new Total Access CD-ROM and is included with all
PortMaster Communications Servers, PortMaster Office Routers and IRX
products.
Q. When will RADIUS 2.0 be available?
A. RADIUS 2.0 is available now.
|