SNMPv3 And RADIUS

Securing your alarms and controls from unauthorized users can be difficult. Even so, you can't afford to leave your network vulnerable. You know exactly how much downtime costs you.

The NetGuardian G5 platform has a lot of power to provide you with advanced security measures. Although there are many different build options, each of them includes SNMPv3 encryption and RADIUS authentication as standard features.

SNMPv3 & RADIUS

SNMPv3 Encryption.
The NetGuardian G5 can report alarms in SNMP v1, v2c, or v3. This allows you to report alarms, no matter what SNMP version you are using.

You have the ability to choose which SNMP versions are permitted to talk with your NetGuardian. By allowing v3 access only, you require all users and SNMP managers to use the v3's enhanced security. In cases where security is less of a concern, you can choose to allow all SNMP versions.

SNMPv3 is the most secure version of SNMP, and the NetGuardian 832A G5 platform encrypts its messages with CBC-DES encryption, a part of the Universal Security Model (USM).

The NetGuardian 832A G5's ability to provide security is enhanced by its support of up to four v3 user profiles. Each user is assigned a unique set of security parameters, including authentication and/or privileged access. Authentication can be based on the MD5 or SHA algorithm. With either option, messages may be encrypted using DES 56-bit encryption based on the CBC-DES standard, allowing for max security and flexibility.

The encrypted data appears scrambled if it is hacked, rendering it unreadable by anyone but the intended recipient. This form of encryption makes SNMPv3 your best form of protection when routing SNMP messages over the Internet. This is key for companies that require high levels of security, authorization, and access control.

RADIUS Diagram
When a login request is made on a PC, the RTU or other Radius device sends a login request to the central RADIUS server. If the login request is from an authorized person, the RADIUS server will approve it.
RADIUS Authentication.

RADIUS provides a way to manage logins to many different types of gear in one central location. The basic architecture is very simple: many RADIUS devices connect to a central RADIUS server. Every time a device receives a login attempt (usually a username & password), it requests an authentication from the central RADIUS server.

All authentication requests are handled by the central server and not the devices themselves. Therefore, updating user profiles and access permissions only has to be done in one place.

Key Advantages of RADIUS on the NetGuardian G5 platform.
  1. Virtually unlimited users. With RADIUS, the number of user logins you can support is huge. Most likely you will never run out.
  2. Centralized management. You'll also be able to manage your logins from your central RADIUS server. You'll never have to worry about updating any single remote. If an employee leaves your company, you can revoke their access rights very easily.
  3. Integration with enterprise management. When your alarm remotes use the same RADIUS authentication method as your other important gear, you reduce the complexity of managing your gear. It's always easier to manage a single umbrella than it is to keep track of several unrelated systems.
Sitemap