About RADIUS Support

Remote Authentication Dial-In User Service (RADIUS) is an Authentication, Authorization, and Accounting protocol used to authenticate controller administrators.

In addition to selecting RADIUS as the server type, complete the following steps for RADIUS-based authentication to work on the controller.
  1. Edit the RADIUS configuration file (users) on the RADIUS server to include the user names.
    For example,

  2. On the controller web interface, select Administration > Admins and Roles > Administrators, and click Create to create an administrator account with super as the user name.
    NOTE
    Refer to Creating Administrator Accounts. In this example, RADIUS can use User1, User2, or User3.
  3. Select Administration > Admins and Roles > Groups and assign an administrator role to the super administrator account.
    NOTE
    Refer to Creating User Groups.
  4. When adding a server type for administrators, select RADIUS as the authentication server type.
    NOTE
    Refer to Configuring AP AAA Servers.
  5. Test the RADIUS server using the account username@super-login.
    NOTE
    The value of super-login depends on the realm configured for the AAA profile. Refer to Creating Administrator Accounts.
Parent topic: Working with AAA Servers