To activate and use external RADIUS server authentication, enable RADIUS authentication and enter the information you have gathered for any RADIUS server.
Select the Radius radio button to enable the RADIUS authentication.
Click New to add a RADIUS authentication server. The "Create new RADIUS Server Configuration" dialog appears.
Type the IP address or host name of the RADIUS server in the IP Address / Hostname field.
Select an authentication protocol in the "Type of RADIUS Authentication" field. Your choices include:
PAP (Password Authentication Protocol)
CHAP (Challenge Handshake Authentication Protocol)
CHAP is generally considered more secure because the user name and password are encrypted, while in PAP they are transmitted in the clear.
By default, the PXE uses the standard RADIUS port 1812 (authentication) and 1813 (accounting). If you prefer to use non-standard ports, change the ports.
Type the timeout period in seconds in the Timeout field. This sets the maximum amount of time to establish contact with the RADIUS server before timing out. Default is 1 second.
Type the number of retries permitted in the Retries field. Default is 3.
Type the shared secret in the Shared Secret and Confirm Shared Secret fields. The shared secret is necessary to protect communication with the RADIUS server.
To verify if the authentication configuration is set correctly, you may click Test Connection to check whether the PXE can connect to the remote authentication server successfully.
Tip: You can also do this by using the Test Connection button in the Authentication Settings dialog.
Click OK. The new RADIUS server is listed in the Authentication Settings dialog.
To add additional RADIUS servers, repeat Steps 3 to 11.