Setting Up RADIUS Configuration in Junos Scope

For each RADIUS server with user accounts that should have access to Junos Scope, you must add that server host information in the Junos Scope software.

To set up RADIUS configuration in Junos Scope, see the following sections:

Adding a RADIUS Configuration in Junos Scope

To add RADIUS server host information to Junos Scope, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. In Junos Scope, click Settings > RADIUS Configuration. The RADIUS Configuration dialog box appears. The message “No RADIUS configuration present” appears if you have not previously added a RADIUS configuration.
  3. Click Add. The Add RADIUS Configuration dialog box appears.
    Image s001495.gif
  4. Type the RADIUS server host DNS name or IP address in the text box. The name must be less than 40 characters.
  5. Type the RADIUS server port number in the text box. The default port number is 1812. The port number value must be between 1 and 65,535.
  6. Type the RADIUS accounting port number in the text box. The accounting port is the port from which the Junos Scope software maintains a record of the loggable activities that a user has performed. The default port number is 1813. The port number value must be between 1 and 65,535.

    The RADIUS server port and the RADIUS accounting ports are optional, however, you must supply at least one of them.

  7. Type the RADIUS server secret in the text box. The secret must be less than
    47 characters.
  8. Type the RADIUS server secret again to confirm it.
  9. Click OK. The RADIUS configuration record is listed in the RADIUS Configuration dialog box by RADIUS server DNS name or IP address and RADIUS server port number.
    Image s001494.gif

Copying a RADIUS Configuration

You can copy an existing RADIUS configuration record using the RADIUS Configuration Entry dialog box. To save the copied RADIUS configuration, you must change either the RADIUS server DNS name or the IP address and port number.

To copy a RADIUS configuration, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. Click Settings >RADIUS Configuration. The RADIUS Configuration dialog box appears.
  3. Select the RADIUS configuration record that you want to copy.
  4. Click Copy. The Add RADIUS Configuration dialog box appears.
    Image s001495.gif
  5. Type the RADIUS server host DNS name or IP address in the text box. The name must be less than 40 characters.
  6. Type the RADIUS server port number in the text box. The default port number is 1812. The port number value must be between 1 and 65,535.
  7. Type the RADIUS accounting port number in the text box. The accounting port is the port from which the Junos Scope software maintains a record of the loggable activities that a user has performed. The default port number is 1813. The port number value must be between 1 and 65,535.

    The RADIUS server port and the RADIUS accounting ports are optional; however you must supply at least one of them.

  8. Type the RADIUS server secret in the text box. The secret must be less than
    47 characters.
  9. Type the RADIUS server secret again to confirm it.
  10. Click OK. The copied RADIUS configuration record is added in the RADIUS Configuration dialog box.

Editing a RADIUS Configuration

You can edit an existing RADIUS configuration record by changing the RADIUS server DNS name, IP address and port number, or RADIUS server secret.

To edit a RADIUS configuration, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. Click Settings >RADIUS Configuration. The RADIUS Configuration dialog box appears.
  3. Select the RADIUS configuration record that you want to edit.
  4. Click Edit. The Edit RADIUS Configuration dialog box appears.
    Image s001496.gif
  5. Type the RADIUS server host DNS name or IP address in the text box. The name must be less than 40 characters.
  6. Type the RADIUS server port number in the text box. The default port number is 1812.
  7. Type the RADIUS accounting port number in the text box. The accounting port is the port from which the Junos Scope software maintains a record of the loggable activities that a user has performed. The default port number is 1813. The port number value must be between 1 and 65,535.

    The RADIUS server port and the RADIUS accounting ports are optional; however, you must supply at least one of them.

  8. Type the RADIUS server secret in the text box. The secret must be less than
    47 characters.
  9. Type the RADIUS server secret again in the text box to confirm it.
  10. Click OK. The edited RADIUS configuration record appears in the RADIUS Configuration Entry dialog box.

Deleting a RADIUS Configuration

To delete a RADIUS Configuration, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. Click Settings >RADIUS Configuration. The RADIUS Configuration dialog box appears.
  3. Select the RADIUS configuration record that you want to delete.
  4. Click Delete. The RADIUS configuration record is deleted from the RADIUS Configuration dialog box and the Junos Scope database.

Exporting RADIUS Configurations

You can export RADIUS configuration information to the local file system or import to another Junos Scope server. You export all RADIUS configuration records to any XML file. The default filename is radiusClients .

To export RADIUS configuration records, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. Click Settings >RADIUS Configuration. The RADIUS Configuration dialog box appears.
  3. Click Export. The File Download dialog box appears.
    Image RADIUS-config-export.gif
  4. Click Save to save the RADIUS configuration data and export it to the file system in a file named Junos Scope-radiusClients.xml. Click Open to view the contents of the export file.
  5. Navigate in the local file system to where you want to save the RADIUS configuration records and click Save. The default RADIUS configuration entries export filename is radiusClients.
  6. Click Open to view the export XML file content.

    Note: The Junos Scope- XML file prefix is not generated if you use the Microsoft Internet Explorer 6.0 Web browser to export Junos Scope setup data. You will only see the radiusClients filename.

Importing RADIUS Configurations

You can import RADIUS configuration records from another Junos Scope server. You can import any valid XML file.

Importing RADIUS configuration information is useful when you do not want to add RADIUS configuration records manually.

To import RADIUS configuration records, follow these steps:

  1. Log in to Junos Scope with superuser permissions.
  2. Click Settings >RADIUS Configuration. The RADIUS Configuration dialog box appears.
  3. Click Import. The Import RADIUS Configuration dialog box appears.
    Image import-radius-configuration.gif
  4. Click Browse and navigate to where the radiusClients RADIUS configuration file is located.
  5. Type the key to decrypt the sensitive authentication information data that you want to import. The key is required if you selected not to include it when the data was exported. This key can be up to 16 characters long and was created during the Junos Scope installation.
  6. To support synchronizing Junos Scope settings imported from multiple servers, select an import method to be used if a conflict occurs between existing records stored in the Junos Scope server and imported records. The available import method options include:
    • Ignore—(Default) An existing record stored in the Junos Scope server takes precedence over any imported record. The imported record is ignored and the existing record is not affected. Any imported record that does not exist in the Junos Scope server is inserted.
    • Merge—If a record exists in the Junos Scope server and also exists in the imported record, the imported record merges with the existing record and is augmented as necessary. If an imported record is in conflict with an existing record, the imported record takes precedence over the existing record. The existing record is merged with the imported record; however, the fields of imported record take precedence over the fields of the existing record. Any imported record that does not exist in the Junos Scope server is inserted.
    • Override—All records in the Junos Scope server are deleted, then all imported records are inserted. Before the override operation occurs, a message window appears with the following confirmation prompt: “ The import with override option will delete all the existing records. Do you want to continue?” Select Yes or No to continue.
  7. Double-click the radiusClients RADIUS configuration file.
  8. The Import/Export Data dialog box appears confirming successful import of the RADIUS configuration records.
    Image s001467.gif

    The Import/Export Data dialog box displays the RADIUS configuration records that have been successfully imported, how many records are duplicates, how many records did not import successfully, and any error descriptions.

  9. Click OK. The imported RADIUS configuration records appear in the RADIUS Configuration dialog box.
    Image s001494.gif