The term “Federation” refers to a collection of organizations, institutions or service providers who decide to create relationships of trust with each other in order to exchange information about the identity of users through a network of interconnected RADIUS server. The purpose is to allow users who belong to a certain organization to be able to authenticate with the credentials of other organizations that are part of a joint federation. Federation means access management at group level, so it is no longer confined to a single organization but a management that foresees the involvement of a group of organizations.
A federated Network Station allows user, who belongs to an organization that is part of a federation, to be able to authenticate and gain log in to services offered by other organizations (in addition to his affiliation) within the federation, using the same logon credentials.
Federation (Out) states the external radius servers that may authenticate federated users that are not locally in Network Station.
The page displays in a table, the list of domains present in Network Station (Non-editable) and any external radius server already inserted. For each record, that represents an external radius server (not internal domains), on the right, there is the context properties button that allows you to: modify an external radius server; delete an external radius server.
In the commands area, at the top right, are present the following buttons:
The “Apply” button updates the radius configuration of Network Station. Generally, it is pressed after making any necessary changes.
By pressing “Add” or by choosing “ Edit” from the context dropdown menu of the data, you can add or edit an outside radius server, passing to its data entry page that allows you to process the following fields:
| Field | Description |
| Realm type | Indicates the type of realm. Possible values are: standard; default. You can define only one realm as default necessary for submitting requests to undefined realms to a federated radius. |
| Realm | Realm of the federated radius or name of the domain of another federated Network Station. The field is visualised only if the “Realm type” is “Standard”. |
| Description | Comment description. |
| IP address for the authorization | IP address for the authorization. |
| IP port for the authorization | IP port for the authorization (Usually 1812). |
| IP address for the accounting | IP address for the accounting. |
| IP port for the accounting | IP port for the accounting (Usually 1813). |
| Secret | Secret of the remote radius server federated. |
Federation (In) states the external federated radius servers that can make authentication requests to Network Station.
The page displays in a table, the list of authorised external radius server already inserted. For each record that represents an external radius server, on the right, there is a context properties button that allows you to: modify an external radius server; delete an external radius server.
In the commands area, at the top right, are present the following buttons:
The “Apply” button updates the radius configuration of Network Station. Generally, it is pressed after making any necessary changes.
By pressing “Add” or by choosing “ Edit” from the context dropdown menu of the data, you can add or edit an outside radius server, passing to its data entry page that allows you to process the following fields:
| Field | Description |
| Description | Comment description. |
| IP address | IP address of the remote radius server authorised to send authentication requests. |
| Secret | Secret for the requests that come from the external federated radius. |