Dell PowerConnect W-Series Instant Access Point 6.1.2.3-2.0.0.0 | User Guide Authentication | 79Configuring an External RADIUS ServerTo configure an external RADIUS server for a wireless network, perform the following steps:1. Click New in the Networks tab and update the Basic Information fields and click Next to continue.2. In the Security tab, slide the bar to Enterprise and update the following fields:a. Key Management: Select the type of key for encryption and authentication.b. Termination: Select Enabled to terminate the EAP portion of 802.1x authentication on the access pointinstead of RADIUS server.c. Authentication server 1: Select New from the drop-down list to authenticate user credentials for theRADIUS server at run time and update the following fields: RADIUS Server Name: Enter the name of the new external RADIUS server. IP address: Enter the IP address of the external RADIUS server. Auth port: Enter the authorization port number of the external RADIUS server. The port number is setto 1812 by default. Accounting port: Enter the accounting port number. This port is used to send accounting records tothe RADIUS server. The port number is set to 1813 by default Shared key: Enter a shared key for communicating with the external RADIUS server. Timeout: Indicates the timeout for one radius request. The IAP will retry to send the request severaltimes (as configured in the “Retry count”) before the user gets disconnected. e.g. If the “Timeout” is 5sec, “Retry counter” is 3, user will be disconnected after 20 sec (“Timeout” x “Retry counter + 1). Thedefault value is 5 seconds. Retry count: Specify a number between 1 and 5. Indicates the maximum number of authenticationrequests that are sent to server group, and the default value is 3 requests. RFC 3576: When enabled, the Access Points will process RFC 3576-compliant Change ofAuthorization (CoA) and Disconnect messages from the RADIUS server. Disconnect messages cause auser session to be terminated immediately, whereas CoA messages modify session authorizationattributes such as data filters. NAS IP address: Enter the Virtual Controller IP address. The NAS IP address is the Virtual ControllerIP address that is sent in data packets. Note: If you don’t enter the IP address, the Virtual Controller IPaddress is used by default when Dynamic Radius Proxy is enabled. NAS identifier: Use this to configure strings for RADIUS attribute 32, NAS Identifier, to be sent withRADIUS requests to the RADIUS server. LDAP Server Name: Enter the name of the new external RADIUS server. IP address: Enter the IP address of the external RADIUS server. Auth port: Enter the authorization port number of the external RADIUS server. The port number is setto 1812 by default. Admin-DN: Enter a Distinguished Name for the admin user who has read/search privileges across allthe entries in the LDAP database. The user may not have write privileges but will be able to search thedatabase, and read attributes of the other users in the database. Admin password: Enter a admin password. Base-DN: Enter a Distinguished Name of the node which contains the entire user database. Filter: Indicates the filter that should be applied to search for the user in the LDAP database. Thedefault filter string is (objectclass=*). Key Attribute: Indicates the attribute that should be used as a key in search for the LDAP server. ForActive Directory, the value is sAMAccountName.