We need to add DualShield RADIUS to the Mobility and configure its properties.
Add Dualshield RADIUS server
1. Go to Mobility console > Configure > Authentication Settings.
2. In the left pane, select the Authentication Profile we have created for SAML authentication, e.g. "DualShield RADIUS"
3. In the middle pane, select "RADIUS: User Authentication | Servers"
4. In the right pane, tick "DualShield RADIUS Authentication Setting Override"
5. Click the "Add" button to add your DualShield RADIUS server
6. Click "OK" to save it
Set RADIUS Retransmit Interval
Now that we have added your DualShield RADIUS server to your Mobility server, we need to configure a few options
1. In the middle pane, click "RADIUS: User Authentication | Retransmit Interval".
2. In the right pane, tick "DualShield RADIUS Authentication Setting Override"
3. Set the Interval to 40,000 or larger
4. Click "Apply" to save the change
Logon to the NetMotion Mobility Server
Click on Configure>Authetication Settings
Select the newly created Authentication Profile for RADIUS, e.g. DualShield RADIUS
There are three settings that need to be applied. The settings are found in the middle pane.
Section | Option |
---|---|
Authentication | Protocol |
RADIUS: User Authentication | Retransmit Interval |
RADIUS: User Authentication | Servers |
Click on Protocol
Select RADIUS - EAP (PEAP and EAP-TLS)
Click Apply
Select Retransmit Interval (under 'User Authentication')
Click on Servers (under 'User Authentication')
Click the Add button
In the RADIUS Server Entry, please enter the following information:
Option | Value |
---|---|
Host address: | Enter the IP address of machine that your DualShield Radius Server was installed |
Port: | 1812 |
Shared Secret: & Confirm Shared Secret: | The shared secret will match the one you created when Registering NetMotion as a RADIUS client |
Click: OK
Client Settings
Click on Configure>Client Settings
Option - You may apply the following settings to device or user groups or just apply globally.
There are two settings that need to be applied. The settings are found in the middle pane under Logon
Section | Option |
---|---|
Logon | Always Prompt for User Credentials |
Logon | Connecting Dialog Duration |
Select the option Always Prompt for User Credentials
Enable Always prompt when connecting
Click Apply
Select the option Connecting Dialog Duration
Change Wait time to 120 seconds
Click Apply