RADIUS (Remote Authentication Dial-In User Service) is a client/server security protocol most widely known for enabling remote authentication and access. You can enable your network to use any authentication method that supports the RADIUS standard.-including token cards and smartcards-simply by installing and configuring the RADIUS method. The RADIUS authentication method requires you to set the following parameters:
| Host Name
| Host name of the primary RADIUS server
Default = localhost |
| Port Number
| Listening port number of the primary RADIUS server
Default = 1645 |
| Timeout (seconds)
| Number of seconds the Oracle server will wait for a response from the primary
RADIUS server
Default = 15 seconds |
| Number of Retries
| Number of times the Oracle database server should send messages to the primary
RADIUS server
Default = 3 |
| Secret File
| The file location of the secret key on the Oracle server. For security
reasons, Oracle recommends that you change this file to root access only.
|
| Send Accounting
| RADIUS accounting logs Oracle database server access information and stores
this information in a file on the RADIIUS accounting server. You can use this
feature only when both the RADIUS authentication servers support this feature.
Values = ON or OFF |
| Challenge Response
| The value of this field is ON when you want to present the user with a
challenge-response GUI
See Also: Appendix C, Integrating Authentication Devices Using RADIUS, in the Oracle Advanced Security Administrator's Guide |
| Default Keyword
| Keyword that verifies the identity of a user through a challenge-response
mechanism
Default = challenge |
| Interface Class Name
| The name of the class that handles the challenge response conversation between
the Oracle client and the RADIUS server.
Default = DefaultRadiusInterface |
|
| See Also: Oracle Advanced Security: Other Params
|