User management

User management

1. Summary

This page is for configuring the RADIUS user settings.

2. Top page

This is the top page for RADIUS users.

2.1. User settings

  • Displays the settings for the RADIUS user.

  • The table items are explained below.

    • Check box

      • Select the check box to delete the RADIUS user settings.

    • User ID

      • Displays the user ID for the RADIUS user.

    • Name

      • Displays the name of the RADIUS user.

    • Authentication method

      • Displays the authentication method for the RADIUS user.

    • VLAN

      • Displays the VLAN that can be accessed by the RADIUS user.

  • Input the text string in the text box at the top of the table, and press the image icon to search for user information.

  • The drop-down list box to the left of the text box lets you select one of the following items to filter the searchparameters even further.

    • None

    • User ID

    • Name

    • Authentication method

    • VLAN

  • A maximum of 100 items can be displayed for one page. Press page_prev or page_next or enter a numeric value to switch between pages.

  • You can press the sort switch to sort by each item.

  • Press the “New” button to display a page where you can create new settings for the RADIUS user.

  • Press the “Setting” button to access a page where you can change the settings of the selected RADIUS user.

  • Press the “Delete” button to delete the settings for all RADIUS users whose check boxes are selected.

  • Press the “Import” button to display a page where you can import settings for the RADIUS user.

  • Press the “Export” button to export the settings for RADIUS users as a CSV file.

  • On this page, you can configure up to 2000 RADIUS users.

3. User settings page

This page is for configuring the RADIUS user settings.
Enter the settings, and then press the "Confirm" button.
If there are no mistakes in the input content of the confirmation screen, press the "OK" button.

3.1. User settings

  • Select an authentication function

    • Select the authentication method used by the RADIUS user from the methods below.

      • 802.1X

      • MAC

      • Web

      • None

    • When the authentication method isselected, the items that must be entered and the items that do not needto be entered for the selected authentication function will becomeclear.

      • When using a Yamaha device as the authenticator, we recommend that you select an authentication function.

    • When Not specified is selected, all items will become selectable.

      • When using a non-Yamaha device as the authenticator, we recommend that you select Not specified.

    • When changing the settings, it is not possible to select anything besides Not specified.

  • User ID

    • Specifies the user ID for the RADIUS user.

    • Specify a text string from 3 to 32 characters.

    • The characters that can be inputted depends on the type of authentication method.

      • For PAP, EAP-MD5, EAP-TTLS, and PEAP:

        • Single-byte alphanumeric characters/symbols, with the following exceptions: \[]"?space

      • For EAP-TLS:

        • Single-byte alphanumeric characters/symbols, with the following exceptions: \[]/:<>|"?space*

    • You cannot set the name as DEFAULT.

    • When using MAC authentication, input the MAC address for the user’s terminal.

      • For the MAC address, use one of the following input formats according to the authenticator settings.

        • XX:XX:XX:XX:XX:XX

        • XX-XX-XX-XX-XX-XX

        • XXXXXXXXXXXX

      • When MAC authentication isselected for “Select an authentication function,” the MAC address thatwas entered will be automatically reflected in the “Password” and“Password (confirm)” fields.

  • Password

    • Specifies the password for the RADIUS user.

    • Enter up to 32 single-byte alphanumeric characters/symbols, with the following exceptions: \[]?

    • When using MAC authentication, input the MAC address for the user’s terminal.

  • Password ( Confirm )

    • To confirm, enter the password once again that you entered in the “Password” field.

  • Authentication method

    • Select the authentication method used to authenticate the RADIUS user from the methods below.

      • PAP

      • PEAP, EAP-MD5, EAP-TTLS

      • EAP-TLS

  • Name

    • Specifies the name of the RADIUS user.

    • Enter up to 32 single-byte alphanumeric characters/symbols, with the following exception: ?

  • Terminal MAC address

    • Input this address when you wish tocontrol access by using a supplicant MAC address in addition toauthentication via user ID and password.

    • Enter the address using the XXXX.XXXX.XXXX format.

  • VLAN

    • Specifies the VLAN to assign to the user via dynamic VLAN.

    • Input a VLAN from 1 to 4094.

  • SSID of connected device

    • For users that are authenticated via a wireless AP, this specifies the SSID that can be used to connect.

    • Enter up to 32 single-byte alphanumeric characters/symbols, with the following exceptions: \[]

  • Recipient e-mail address for certificates

    • Specify the e-mail recipient addresses used when sending client certificates.

    • Input up to 256 single-byte alphanumeric characters and single-byte symbols.

    • You cannot use symbols other than _-. and @.

  • Period of certificate validity

    • Specifies the period of validity that is set when creating a client certificate.

    • Enter the date in YYYY/MM/DD format.

    • Dates from the current system date to 2037/12/31 can be entered for the period of validity.

4. User settings import page

This page is for importing the RADIUS user settings.
Enter the contents, and then press the "Confirm" button.
If there are no mistakes in the input content confirmation screen, press the "OK" button.
The client certificates for users that were deleted during import will automatically be revoked.

4.1. Import user settings

  • File to import

    • Select the CSV file to import.

  • Issue a certificate

    • Select below whether to issue a client certificate after the import is completed.

      • Issue a certificate for users whose settings have been changed, and send e-mail

      • Issue a certificate for users whose settings have been changed

      • Do not issue a certificate