RADIUS Server
The FortiNDR system supports remote authentication of administrators using RADIUS servers. To use this feature, you must configure the appropriate server entries in the FortiNDR unit for each authentication server in your network.
If you have configured RADIUS support and require a user to authenticate using a RADIUS server, the FortiNDR unit contacts the RADIUS server for authentication. To authenticate with the FortiNDR unit, the user enters a user name and password. The FortiNDR unit sends this user name and password to the RADIUS server. If the RADIUS server can authenticate the user, the FortiNDR unit successfully authenticates the user. If the RADIUS server cannot authenticate the user, the FortiNDR unit refuses the connection.
The following options are available:
|
Create New |
Select to add a RADIUS server. |
|
Edit |
Select a RADIUS server in the list and click Edit in the toolbar to edit the entry. |
|
Clone |
Select a RADIUS server in the list and click Clone in the toolbar to clone the entry. |
|
Delete |
Select a RADIUS server in the list and click Delete in the toolbar to delete the entry. |
The following information is displayed:
| Profile Name | The RADIUS server profile name. |
| SERVER Name/IP | The server name and IP address of the RADIUS server. |
| Ref | The RADIUS server's reference ID. |
To create a new RADIUS server:
- Go to User & Authentication > RADIUS Server.
- Click Create New. The Add New RADIUS Server page opens.
- Configure servers settings.
Profile name Enter a name for the profile.
Server name/IP Enter the server name and IP address.
Protocol Select one of the following from the dropdown:
- Default Authentication Scheme
- Password Authentication
- Challenge Handshake Authentication
- MS Challenge Handshake Auth
- Ms Challenge Handshake Auth V2
NAS IP/Called station ID Enter the NAS IP address and called station ID.
Server Secret Click Change to change the secret.
- Click OK.