Configuring the Steel-Belted Radius/SPE Server and RADIUS Clients
You must configure both the client and server to allow communication between the RADIUS server (SPE 4.0) and the RADIUS clients (the JUNOSe router and the SAE).
Configuring the Steel-Belted Radius Server
The RADIUS server must be able to communicate with the RADIUS clients. The RADIUS server must have the following information for all RADIUS clients connected to the RADIUS server:
- IP address of the RADIUS client
- RADIUS shared secret to be exchanged between the Steel-Belted Radius/SPE server and the client
- Model (vendor) of the RADIUS client
You perform these configurations by using SDX Admin.
Configuring RADIUS Clients
Each RADIUS client must be able to contact its RADIUS server. The RADIUS client must have the following information to allow client/server communication:
- IP address of the RADIUS server
- RADIUS shared secret to be exchanged between the Steel-Belted Radius/SPE server and the client
- UDP ports on which the client sends and receives RADIUS authentication and accounting packets. They must match with the server configuration.
The RADIUS client configuration of the JUNOSe router is described in the JUNOSe Broadband Access Configuration Guide.
Using the Radius Administrator to Configure RADIUS Clients
This administration user interface is a Web-based GUI. You use this GUI to configure the JUNOSe router and the SAE as RADIUS clients. Each JUNOSe router and each SAE connected to a Steel-Belted Radius/SPE server must be configured as a RADIUS client.
If you have a Netscape browser installed in /opt/netscape, you must set the Netscape environment variable MOZILLA_HOME=/opt/netscape to run Java applets.
After you launch the Netscape browser, choose the URL
file:///opt/UMC/SPE/radadmin/java/index.html
This file prompts you for authentication credentials when you try to connect to the local server. By default, the username is admin with the password radius.
![]()
After successful authentication, the Web-based GUI is displayed.
![]()
To configure a JUNOSe router as a Remote Access Server (RAS) client, select RAS Clients on the left-hand side of the window, and click Add; then enter the necessary information.
![]()
When the Steel-Belted Radius/SPE server is integrated with the SAE, the Steel-Belted Radius/SPE server must know that the SAE server is a RAS client. The SAE server requires some JUNOSe specific attributes; therefore, it must be configured as a JUNOSe RADIUS client.
To specify the authentication method in the Radius Administration window, select Configuration on the left-hand side of the screen. The methods Native User, Unix User, and Unix Group must be deactivated. LDAP will be the only activated method.
![]()