Viper SC+™ IP Router for Licensed Spectrum PN 001-5008-000 Rev. C | Page 104Device AuthenticationWhen enabled, Viper performs local and remote device authentication using a RADIUS server. Set the VPN moduleof the Viper (local) to operate in server mode and set the VPN module of remote devices to operate in client mode.The Viper will authenticate remote devices using the RADIUS server when they are powered on and at regularintervals. The Viper will authenticate itself to the RADIUS server at startup. The default setting is disabled.The following figure illustrates device authentication using RADIUS with a Viper network. In this example, VPNclient 2 requests a secure tunnel. The VPN server initiates a RADIUS transaction to authenticate Client 2 using itsMAC address as a user name and password. The tunnel is created only if the RADIUS server responds with anauthentication grant.Figure 62 – Device AuthenticationTo utilize device authentication, your network must use the following parameters: The master device (Viper 1)must have Device Authentication Enabled and must be configured as an Access Point (RF Network Settings » RFNetwork) and a VPN Server (Security » VPN). All remote devices (Vipers 2,3 & 4) must have VPN Enabled and mustbe configured as VPN Clients (Security » VPN).Client ConfigurationRADIUS Server IPIP Address of the RADIUS server.RADIUS Server PortUDP port number to use when sending authentication requests to the RADIUS server.RADIUS SecretSecret key shared between the RADIUS client and RADIUS server. This key is used to encrypt messages exchangedbetween the client and server application.RADIUS TimeoutAmount of time (in seconds) to wait for a response when sending an authentication request to the RADIUS server.If the response is not received, the request will be resent as many times as specified by the RADIUS Retries setting.
