Does the AR used as the LNS support RADIUS authentication

21

The AR that functions as the L2TP network server (LNS) supports RADIUS authentication.

Other related questions:
Does the AR support RADIUS accounting
The support for RADIUS accounting is as follows: - AR routers of all versions support RADIUS authentication for NAC users. - AR routers of V200R002C00 and later versions support RADIUS authentication for administrators. - AR routers of V200R005C10 and later versions support RADIUS authentication for PPPoE users. - AR routers do not support RADIUS authentication for LAC and LNS users.

Does an AR enabled with L2TP support RADIUS authentication
The L2TP Access Concentrator (LAC) and L2TP Network Server (LNS) support the RADIUS authentication (remote authentication) function to authenticate remote users. PPP sessions are initiated by user devices and received by the LNS. After being authenticated by the LNS, remote users successfully set up PPP sessions with the LNS and can access resources in the enterprise headquarters. As the other endpoint of an L2TP tunnel, the LNS is a peer device of the LAC, and sets up an L2TP tunnel with the LAC. Additionally, the LNS is the logical termination point of a PPP session; therefore, the PPP client (user device) and the LNS establish a virtual point-to-point link. An LAC provides PPP and L2TP processing capabilities on the packet switched network. The LAC establishes an L2TP connection with the LNS based on the user name or domain name in PPP packets so that PPP frames can be transmitted to the LNS.

Does the AR enabled with L2TP support RADIUS authentication
The LAC and LNS support RADIUS authentication (remote authentication) to authenticate remote users. The LNS terminates PPP sessions. After being authenticated by the LNS, remote users successfully set up PPP sessions with the LNS and can access resources in the enterprise headquarters. For L2TP negotiation, the LNS is the peer device of the LAC, and set up an L2TP tunnel with the LAC. Additionally, the LNS is the logical termination point of a PPP session; therefore, the PPP client (user device) and the LNS establish a virtual point-to-point link. An L2TP Access Concentrator (LAC) provides PPP and L2TP processing capabilities on the packet switched network. The LAC establishes an L2TP connection with the L2TP network server (LNS) based on the user name or domain name in PPP packets so that PPP frames can be transmitted to the LNS.

Configuring the LNS to use the RADIUS server to authenticate mobile users in a Client-Initiated scenario
Configure the LNS to use the RADIUS server to authenticate mobile users in a Client-Initiated scenario as follows: Example for Configuring L2TP VPN (RADIUS Authentication) in the Client-Initiated Scenario

Method used to configure RADIUS authentication on the AR
RADIUS authentication is a remote authentication mode. An access device used as a RADIUS client collects user information (such as the user name and password) and sends the user information to a remote RADIUS server (AAA server). The RADIUS server authenticates users based on the information, and performs authorization and accounting for the users after the users are authenticated. The RADIUS server uniformly authenticates and manages (such as accounting) users to ensure network security.

If you have more questions, you can seek help from following ways:
To iKnow To Live Chat
Scroll to top