40 DOMINION KX USER G UIDEGeneral Settings for Remote Authentication1. On the Setup menu, click Security, and then click Remote Authentication to configure yourDominion unit for remote authentication. The Remote Authentication window appears:Figure 26 Remote Authentication Window2. Select the option button of the remote authentication protocol you prefer (LDAP orRADIUS).3. Type the IP Address of your primary and secondary remote authentication servers in thePrimary server IP address and Secondary server IP address fields.4. Type the server secret needed to authenticate against your remote authentication servers inthe Secret phrase field. Re-type the server secret in the Confirm secret phrase field.5. If you selected LDAP as your remote authentication protocol, please read the next sectionImplementing LDAP Remote Authentication to complete the fields in the LDAP panel ofthe Remote Authentication window. If you selected RADIUS, please skip to ImplementingRADIUS Remote Authentication to complete the fields in the RADIUS panel of thewindow.6. When finished, click OK to save the Remote Authentication changes or click Cancel to exitwithout saving.Note: Upon receipt of an Access-Request from a valid client, an appropriate reply MUST betransmitted. An Access-Request SHOULD contain a User-Name attribute. It MUST contain eithera NAS-IP-Address attribute or a NAS-Identifier attribute (or both). Raritan recommends usingthe NAS-IP-Address matches .Implementing LDAP Remote AuthenticationReminder: Microsoft Active Directory functions natively as an LDAP authentication server.If you choose LDAP authentication protocol, complete the LDAP fields as follows:• Default Port / User Defined Port: By default, LDAP uses port 389. To use a different port,click User defined ports, and then enter a different port number in the Custom port field.• Base DN, Base Search: This describes the name you want to bind against the LDAP, andwhere in the database to begin searching for the specified Base DN. An example Base DNvalue might be: “cn=Administrator,cn=Users,dc=testradius,dc=com” and an example BaseSearch value might be: “cn=”Users,dc=raritan,dc=com”. Consult your authentication serveradministrator for the appropriate values to enter into these fields.