ON THIS PAGE
RADIUS Provider
Remote Authentication Dial-In User Service (RADIUS). See below for limitations.
RADIUS Limitations
- No support for changing the RADIUS user's password on a remote RADIUS server.
- RADIUS authentication does not control Linux user login via SSH.
- No support for group role-mapping changes.
- Nested groups are not allowed. You must explicitly assign each group to a role.
- When a user logs in, only username and password are required for authenticating against the remote RADIUS server. Log in credentials are not cached. Therefore, when a user logs in, a connection between Apstra and the remote RADIUS server is required.
Create RADIUS Provider
After configuring and activating a provider, you must map that provider to one or more user roles to give permissions to users with those roles.