Skip Navigation Links
Home
Products
Pricing
Download
SupportExpand Support
Contact us
About us
Customers Area
Skip Navigation LinksEvolynx > Support > Documentation > Reference > Configuration File

How to Configure Server and Admin programs

Application Configuration Files are XML files which are placed in the application installation folder. The following table shows the default path and file names used for Server and Admin programs:

Program Application Folder Configuration File Name
Server C:\Program Files\Evolynx\Evolynx RADIUS Server\ EvolynxRadius.exe.config
Admin C:\Inetpub\wwwroot\EvolynxAdmin\ Web.config

You can open these files with text editor of your choice. Configuration parameters are stored under <appSettings> node. Make sure you restart the program (Server and Admin) after you change this file.


Configuring Data Access Parameters
If you are not installing the Server software (or Admin software) on the same computer which runs the SQL server, you need to change the server name in ConnectionString key. Also, if you want to change the User ID and Password used to access the database you need to change this key.
If your SQL server is configured to use a TCP/IP port number other than the default (1433) you should specify your port number here. Add a comma after the server name and then enter the new port number after comma. Example:

value="Server=localhost,1234;Database=EvolynxRadius;UID=EvolynxRadius;PWD=a6l9R0h3"

Configuring RADIUS UDP ports
You can change the UDP port numbers used by RADIUS server. Default values are 1812 for RADIUS and 1813 for RADIUS Accounting. These are stored in Auth_Port and Acc_Port keys in the Configuration file.

Configuring Multithreading
Evolynx RADIUS server is a multithreaded software. It can use as much processing power as your operating system can provide. The default settings of Evolynx RADIUS server is optimized for systems with one or two CPUs. If you plan to use a server with four CPUs or more, you can try to turn on the MultiThread switch in application configuration file.
If you change the value="False" to value="True" on a multiprocessor server, you may get higher performance. You should run a performance test before and after you change this setting and compare the results to make sure your RADIUS server is configured for best performance.

Configuring Proxy/Forwarding
You can easily setup a RADIUS proxy server and forward requests based on value of specific RADIUS attributes (Proxy Rules). To enable proxy mode in Evolynx RADIUS change the value="False" to value="True" for EnableProxy switch of the configuration file.For more information see Proxy and Forwarding.

Enabling VoIP
To enable VoIP features in Evolynx RADIUS, in configuration file, change the value of EnableVoIP switch from "False" to "True". Note that this switch must be changed in both configuration files (Admin and Server).For more information see VoIP (Voice Over IP) Setup.

Authentication Protocols
In some cases you may need to disable some of the authentication protocols and use only specific protocols. For example your security policy restricts your users to use only MS-CHAP V2 protocol. In situations like this you can change the value="True" to Value="False" to disable each Protocol. The following Protocol switches are available
  • AllowPAP
  • AllowCHAP
  • AllowMSCHAP
  • AllowMSCHAP2
  • AllowEAP_MD5
  • AllowEAP_TLS
The EAP-TLS protocol is disabled by default. Before you enable this option you need to make sure that required "Machine Certificates" are installed on your server.

MPPE Encryption support
Support for encrypted connections is provided by MPPE encryption. MPPE supports RC4 encryption with 40 and 128 bit keys. To enable MPPE encryption, change the value of Enable_MPPE key from "False" to "True". Because of the overhead of the encryption operation, the default value is False. None of the other MPPE settings will be used unless Enable_MPPE is set to True. Please note that MPPE encryption is only supported in MS-CHAP and EAP connections.
MPPE_Policy key specifies if the encryption is required or optional:
  • 1 = Optional
  • 2 = Required
You can enable or disable any of the valid key lengths. To enable 40 bit keys, set the MPPE_40 key to value "True". MPPE_128 is used to enable or disable the 128 bit encryption. If both are enabled, the client will decide which one to use.

Specify the source of Clients information
By default, Evolynx RADIUS loads the Client information (IP address and Secret) from a text file named "clients.txt". You have the option to load this information from a table named Clients in SQL database. This is done using the LoadClientsFromAPI; switch. If you change the value="False" to value="True" client information will be loaded using an API function.

Specify the source of Configuration information
By default, Evolynx RADIUS loads the Configuration information (described in this page) from a text file named "EvolynxRadius.exe.Config". You have the option to load this information from any source you prefer. This is done using the LoadConfigFromAPI switch. If you change the value="False" to value="True" You should provide adequate API code to set the Configuration information.

Using Custom Attributes
In many situations, when a new connection is established, you may need to send other attributes in an Access_Accept packet. Most of the time, these attributes are "Vendor specific". Evolynx RADIUS lets you add any number of Custom Attributes to each "Service". When an Access_Accept package is being sent for a Customer, if there is any Custom Attributes defined for that specific service they will be added to packet. This feature can be easily used for "Filter-ID", "Framed-Compression" or any other attribute like bandwidth management.
Because of the added overhead, this feature is disabled by default. If you need to support "Custom Attributes", change the value of LoadCustomAttributes from "False" to "True".

Time calculation Precision
If you need to change the time calculation precision of the accounting operation from minutes to seconds, change the value of BySeconds from "False" to "True".
Please note that the word "Minute" in database tables and web based Admin program will not change, but the values will be treated as Seconds.

Logging RADIUS packets
When trouble shooting a RADIUS implementation, a simple Log file which shows some details about failed packets could be very useful. When you enable logging option, Evolynx RADIUS creates a Log file in the same folder it is installed in.
To enable logging, you must change the LogMode attribute. This attribute can hold values 0 to 4.
  • LogMode = 0 --> Disable Logging
  • LogMode = 1 --> Log errors only
  • LogMode = 2 --> Reserved
  • LogMode = 3 --> Log errors and received packets
  • LogMode = 4 --> Log errors, received packets and sent packets
Evolynx Admin Configuration Switches
The following section describes the configuration keys used to configure Evolynx Admin Web based program. These keys can be found in "Web.config" file. ConnectionString and EnableVoIP keys are described above.

Security Info Required
When entering Customer's data in Evolynx Admin, you are required to provide the Birthdate and ID number as security information. Some users may prefer to not to enter these data to speed up the data entry process. You can change the value of SecurityInfoRequired key to "False" and after that you won't have to enter data in these two fields.

RADIUS Service Computer
Evolynx Admin is able to control and check the status of the Evolynx Server program. If your Evolynx Service and Evolynx Admin are not running on the same computer, you need to specify the computer name of the Evolynx Server in "web.config" file. The default value for this key is "." which is equal to "localhost".

© 2003-2007. Evolynx, Inc. All Rights Reserved.