The IBM AIX® RADIUS server offers an authentication, authorization, accounting (AAA) system designed to provide centralized user authentication to network resources. It helps you deliver secure network access for your company's local and remote users.
The RADIUS server is included with the AIX 5L™ (V5.3) operating system and uses the Remote Authentication Dial-In User Service (RADIUS) protocol-the de facto standard for providing secure remote access into networks.
The IBM AIX RADIUS server enables you to:
You can configure the IBM AIX RADIUS server so that all systems connecting to any network-internal or external-can be authenticated and authorized. In addition to user authentication, it can also be configured to define factors such as IP address assignment, netmask and Maximum Transmission Unit (MTU). Use the RADIUS server to capture valuable user information, including network usage patterns, the amount of data accessed and session connection and termination information. In addition, the RADIUS server can enforce authentication and policy information per user.
Protect business-critical networks securely, flexibly
By providing one centralized server for all network authentication, either remote or within your company's network, the IBM AIX RADIUS server helps safeguard critical systems with enterprise-class security.
With RADIUS configured, access to systems and networks is controlled through a centralized authentication mechanism. Users can only obtain remote or local access when they use a valid user ID and password.
To provide the flexibility you need to best support your company's security standards and policies, the RADIUS server supports several password hiding algorithms. These include:
Enhance manageability of network authentication
The IBM AIX RADIUS server provides multiple options for managing user data: You can define a centralized user database using LDAP as the back end, or deploy RADIUS quickly by authenticating against existing users defined under the AIX 5L operating system.
RADIUS server utilizes System Management Interface (SMIT) panels to help ease administration workload. In addition, it can help simplify management of network resources by supporting a single point of authorization for dial-in remote access.
Scale up or down as the user base changes
The AIX 5L operating system allows administrators to adjust the number of active RADIUS servers based on workload demands. This means that the solution can scale to match your company's changing network access management needs. LDAP also can scale to support thousands of users. This allows the solution to grow as your business grows.
Protect technology investment with standards-based design
Designed to be interoperable with any hardware client that uses the RADIUS protocol, the RADIUS server can help you protect your company's technology investments by providing the flexibility to use any standards-based hardware.
Support for vendor-specific attributes also enables you to use any client that uses the RADIUS protocol and to define attributes specific to that hardware.
Key features of IBM AIX RADIUS server