Policy Server GuidesPolicy Server Management GuideUsing the Policy Server as a RADIUS ServerHow to Authenticate Users in a Homogeneous RADIUS Environment › Define the Realm

Previous Topic: Create the Authentication Scheme

Next Topic: Define the Rule
Define the Realm

By default, when you create a realm that is protected by a RADIUS Agent, the realm is protected. Therefore, you do not need to define rules for the realm that deny users access. If users do not match the criteria of the rule that enables access to the realm, they are automatically denied access.

In this example, there is only one realm, therefore, the RADIUS Agent that is protecting the realm was not configured with a realm hint.

To define the realm

  1. In the Policy Server User Interface, select the Domain tab.
  2. Right click the policy domain for the RADIUS device and select Create Realm.

    The SiteMinder Realm Dialog box appears.

  3. In the Name field, enter a name for the Realm.

    Note: The name cannot contain the characters * or &.

  4. Optionally, in the Description field, enter a description of the Realm.
  5. Under the Resource tab, select the name of the RADIUS Agent from the Agent drop-down list.
  6. From the Authentication Scheme drop-down list, select the appropriate authentication scheme.

    Note: Only authentication schemes that you have already created will be displayed in this drop-down list. If you have not created any schemes, this list will be blank.

  7. Select the Session tab to move it to the front.
  8. Under the Session tab, do the following:
    1. Optionally, in the Session Timeouts group box, specify the maximum amount of time that a session can remain active and the maximum amount of time that a session can remain idle.

      SiteMinder provides the NAS device with these session limitations. Once these time constraints have been met, the NAS device ends the session.

    2. Optionally, select the Synchronous Auditing check box to require that all authentication and auditing requests are successfully logged to the auditing log before the user is allowed access.

      The RADIUS auditing log is configured on the Debug tab of the Policy Server Management Console.

  9. Click OK to save the realm definition and exit the dialog box.