Create a RADIUS logon procedure
- Login to the DualShield management console
- In the main menu, select “Authentication | Logon Procedure”
- Click the “Create” button on the toolbar
- Enter “Name” and select “RADIUS” as the Type
- Click “Save”
- Click the Context Menu icon of the newly create logon procedure, select “Logon Steps”
- In the popup windows, click the “Create” button on the toolbar
- Select the desired authentication method, e.g. “Static Password + One-Time Password”
- Click “Save”
Create a RADIUS application
- In the main menu, select “Authentication | Applications”
- Click the “Create” button on the toolbar
- Enter “Name”
- Select “Realm”
- Select the logon procedure that was just created
- Click “Save”
- Click the context menu of the newly created application, select “Agent”
- Select the DualShield Radius server, e.g. ”Local Radius Server”
- Click “Save”
- Click the context menu of the newly created application, select “Self Test”
Register the F5 BIG-IP as a Radius client
- In the main menu, select “RADIUS | Clients”
- Click the “Register” button on the toolbar
- Select the application that was created in the previous steps
- Enter F5 BIG-IP’s IP in the IP address, e.g. 192,168.111.200
- Enter the Shared Secret which will be used in F5 BIG-IP.
- Click “Save”
Register the DualShield RADIUS server
Log into the F5 BIG-IP Configuration Utility. Select “Access Policy | AAA Servers | RADIUS”
- Click the + button to add a new RADIUS server
- Populate the fields. In this example, we have the DualShield RADIUS server installed IP 192.168.124.171, port 1812
Enter the Shared Secret that was set up in the DualShield Radius Client.