Skip to content

Internal server

The access point features a built-in RADIUS server. You can turn it on by selecting Internal for RADIUS type. See RADIUS settings.

You can configure the following settings for the internal RADIUS server:

  • Internal server: Turn the access point’s internal RADIUS server on or off.
  • EAP internal authentication: Select EAP internal authentication from the drop-down menu. You can choose PEAP (MS-PEAP) or PAP.
  • EAP certificate file format: Displays the EAP certificate file format: PCK#12(*.pfx/*.p12)
  • EAP certificate file: Click Upload to open a new window and select the location of an EAP certificate file to use. The internal RADIUS server will use a self-signed certificate if no certificate file is uploaded.
  • Shared secret: Enter a shared secret between 1 – 99 characters in length for use between the internal RADIUS server and RADIUS clients.
  • Session-timeout: Set a session timeout duration in seconds between 0 – 86400. The default is 3600.
  • Termination-action: Select a termination-action attribute:

    • Reauthentication (RADIUS-request): Devices send a RADIUS request to the access point for reauthentication.
    • Don't reauthentication (Default): The device terminates the session and isn't automatically reauthenticated.
    • Don't send: Devices don't send a termination-action attribute to the access point.