radtest(1) [centos man page]
RADTEST(1) FreeRADIUS Daemon RADTEST(1) NAME
radtest - send packets to a RADIUS server, show reply SYNOPSIS
radtest [-d raddb_directory] [-t pap/chap/mschap] [-x ] [-4 ] [-6 ] user password radius-server nas-port-number secret [ppphint] [nasname] DESCRIPTION
radtest is a frontend to radclient(1). It generates a list of attribute/value pairs based on the command line arguments, and feeds these into radclient. It's a fast and convenient way to test a radius server. OPTIONS
-d raddb_directory The directory that contains the RADIUS dictionary files. Defaults to /etc/raddb. -t pap/chap/mschap/eap-md5 Choose the authentiction method to use. e.g. "-t pap", "-t chap", "-t mschap", or "-t eap-md5",. Defaults to "pap". Using EAP-MD5 requires that the "radeapclient" program is installed. -x Enables debugging output for the RADIUS client. -4 Use NAS-IP-Address for the NAS address (default) -6 Use NAS-IPv6-Address for the NAS address (default) user Username to send. password Password of the user. radius-server Hostname or IP address of the radius server. Optionally, you may specify a port by appending :port nas-port-number The value of the NAS-Port attribute. Is an integer between 0 and 2^31, and it really doesn't matter what you put here. 10 will do fine. secret The shared secret for this client. ppphint If you put an integer > 0 here, radtest (or actually radclient) will add the attribute Framed-Protocol = PPP to the request packet. nasname If present, this will be resolved to an IP address and added to the request packet as the NAS-IP-Address attribute. If you don't specify it, the local hostname of the system will be used. SEE ALSO
radiusd(8), radclient(1). AUTHOR
Miquel van Smoorenburg, miquels@cistron.nl. 5 April 2010 RADTEST(1)
Check Out this Related Man Page
RADZAP(1) FreeRadius Daemon RADZAP(1) NAME
radzap - remove rogue entries from the active sessions database SYNOPSIS
radzap [-d raddb_directory] [-h] [-N nas_ip_address] [-P nas_port] [-u user] [-U user] [-x] server[:port] secret DESCRIPTION
The FreeRadius server can be configured to maintain an active session database in a file called radutmp. Commands like radwho(1) use this database. Sometimes that database can get out of sync, and then it might contain rogue entries. radzap can clean up this database. As of FreeRADIUS 1.1.0, radzap is a simple shell-script wrapper around radwho(1) and radclient(1). The sessions are "zapped" by sending an Accounting-Request packet which contains the information necessary for the server to delete the session record. radzap sends a packet to the server, rather than writing to radutmp directly, because session records may also be main- tained in SQL. OPTIONS
-d raddb_directory The directory that contains the RADIUS configuration files. radzap reads radiusd.conf to determine the location of the radutmp file. -h Print usage help information. -N nas_ip_address Zap the entries which match the given NAS IP address. -P nas_port Zap the entries which match the given NAS port. -u user Zap the entries which match the given username (case insensitive). -U user Zap the entries which match the given username (case sensitive). -x Enable debugging output. server[:port] The hostname or IP address of the remote server. Optionally a UDP port can be specified. If no UDP port is specified, it is looked up in /etc/services. The service name looked for is radacct for accounting packets, and radius for all other requests. If a service is not found in /etc/services, 1813 and 1812 are used respectively. secret The shared secret for this client. It needs to be defined on the radius server side too, for the IP address you are sending the radius packets from. SEE ALSO
radwho(1), radclient(1), radiusd(8), radiusd.conf(5). AUTHOR
Alan DeKok <aland@ox.org> 8 April 2005 RADZAP(1)