Chapter 6: User Management113Implementing RADIUS Remote AuthenticationRemote Authentication Dial-in User Service (RADIUS) is an AAA(authentication, authorization, and accounting) protocol for networkaccess applications.To use the RADIUS authentication protocol:1. Click User Management > Authentication Settings to open theAuthentication Settings page.2. Click the RADIUS radio button to enable the RADIUS section of thepage.3. Click the icon to expand the RADIUS section of thepage.4. In the Primary Radius Server and Secondary Radius Server fields,type the IP address of your primary and optional secondary remoteauthentication servers, respectively (up to 37 characters).5. In the Shared Secret fields, type the server secret used forauthentication (up to 37 characters).The shared secret is a character string that must be known by boththe Dominion KX II and the RADIUS server to allow them tocommunicate securely. It is essentially a password.6. The Authentication Port default is port is 1812 but can be changedas required.7. The Accounting Port default port is 1813 but can be changed asrequired.8. The Timeout is recorded in seconds and default timeout is 1 second,but can be changed as required.The timeout is the length of time the Dominion KX II waits for aresponse from the RADIUS server before sending anotherauthentication request.9. The default number of retries is 3 Retries.This is the number of times the Dominion KX II will send anauthentication request to the RADIUS server.10. Choose the Global Authentication Type from among the options inthe drop-down list: PAP - With PAP, passwords are sent as plain text. PAP is notinteractive. The user name and password are sent as one datapackage once a connection is established, rather than the serversending a login prompt and waiting for a response.