Edit the RADIUS server configuration

Procedure

1. On the Authentication screen, select the RADIUS tab on the Authentication Configuration panel.
2. Click Edit to the right of the Primary RADIUS Server panel.
3. In the dialog, configure the RADIUS server options described in the following table.

   Setting	Description
   IP Address	IP address of the RADIUS server.
   Port	Port on the RADIUS server that listens for authentication requests; the default value is 1812.
   Authentication Protocol	Authentication method used on the RADIUS server: PAP MD5 PEAP/EAP-MSCHAPv2 To use the PEAP/EAP-MSCHAPv2 protocol, you must first import an X509 certificate for the RADIUS server. You can click Import to import a certificate or choose a previously imported one from the SMS certificate repository. For more information about certificate management, see View certificates. Important A certificate import or reset is a separate operation from configuring the authentication source and takes effect immediately. The SMS administration should carefully coordinate certificate and the RADIUS configuration changes.
   Secret/Confirm Secret	String used to encrypt and sign packets between RADIUS clients and the RADIUS server, set in the RADIUS client configuration file.
   Timeout	Timeout, in seconds, for communication with the RADIUS server; the default value is 3 seconds.

4. Test the RADIUS configuration by entering a valid User Name and Password for the server (and confirming), and then clicking Test.
5. Click OK to save the server configuration.
   An X509 certificate is required for validating PEAP/EAP-MSCHAPv2 authentication responses. The certificate is generated on the RADIUS server, and must be imported to the SMS. The SMS server accepts DER (binary) or PEM (Base64) encoded X509 certificates.