SBR's advanced feature set, however, is underwhelming. One major disappointment is its lack of SNMP support. And there's no explicit communication with the DHCP server to take advantage of capabilities like requesting an address from a specific scope based on the user, NAS or any other identifiable differentiator.
Steel-Belted Radius. Funk Software, (800) 828-4146. www.funk.com
RAD-Series was the only server we tested on Linux, and its performance score was a jaw-dropping 1,900 transactions (authentication and accounting) per second against Windows AD. Interlink also sent its Secure XS server, which runs on Windows and focuses on securing WLANs, but the product didn't fit the scope of this review.
The RAD-Series performed well overall but fell short in security and policy management. And we were disappointed with its reporting and presentation features. Installing and configuring the server, however, was a breeze compared with getting the open-source, Linux-based FreeRADIUS server up and running. The installation was similar to that of NavisRadius and SBR, except that it was text-based. We did need to set up a shared secret between the server manager on remote machines and the RAD-Series servers; the other products tested use SSL certificates to secure communications. We could administer our RAD-Series using a Web interface apart from the command prompt and telnet. We were impressed that the server could be managed through an SNMP workstation, too.
Configuring the RAD-Series to interface with Windows AD was no easy task--we had to edit the authfile and define LDAP scripts. Occasionally, when we restarted the server, the authfile would change its format and the server could not parse the content of the file properly. Interlink said this was because we tried to edit the file through both the text editor and the configuration manager. However, the server manager does have the intelligence to lock down the interface to only one administrative session in the entire network.
The RAD-Series doesn't support TACACS+. However, it supports a breadth of other authentication stores, using primarily LDAP for external systems, such as SecureID and Kerberos. We could define user configuration at the user and realm levels. ProLDAP, bundled with the RAD-Series, provided a scalable repository for authentication with support from complex policy implementations, including check and deny lists.
Bob Friday, Chief AI Officer for Juniper Networks, explains how the advanced technology is transforming operations.
Contact center leaders from 8x8, Awaken Intelligence, and 360insight discuss the importance of agent experience.
AI may force enterprises to rewire parts of their data centers so they are fully optimized to run such workloads. The question is do you use Ethernet or InfiniBand?
