08-27-2009
FreeRADIUS VMPS Configuration
I could use some help with freeradius configuration. If there is any expert user out there kind enough to give me a hand, would really appreciate it.
Goal:
We are trying to use the freeRADIUS server's VMPS integration feature. Unfortunately the wiki pages do not have real life deployment examples.
Questions:
1. Has anyone out there successfully deployed FreeRADIUS on a Cisco shop to act as VMPS server?
2. According to the radiusd.conf file, the clients.conf file should be configured as followed: Am I on the right track?
secret=< shared secret >
client 10.100.0.0/24 {
secret = <shared secret>
}
3. Now for the VMPS file, should the clients statement be as follwed.....?
client 10.x.x.1 secret < shared secret >
client 10.x.x.1 secret < shared secret >
# and so on
4. for the # Do a simple mapping of MAC to VLAN section, should the statements be as followed:
address 0000.0c07.ac01 vlan-name XYZ
#########################################
Thanks
8 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Can anyone please tell me anything about the following:
AIX O/S - IBM RS6000 server
I want to know where I can go to check and see how much RAM is intalled in the server, how many Processors are installed in the server, and how I can run a sar command to show me processor statistics?
I... (4 Replies)
Discussion started by: Docboyeee
4 Replies
2. BSD
HEllo,
I try to Launch OOO, but I have X configuration problem.
I 'm searching in man pages but if someone can help me...
Of course I set the DISPLAY as explain in the man page but with no more result: setenv DISPLAY myws:0
Thanks in advance (1 Reply)
Discussion started by: SoulCoder
1 Replies
3. Post Here to Contact Site Administrators and Moderators
how to configure servor dns on windows servor 2003 (0 Replies)
Discussion started by: djest
0 Replies
4. Linux
hello,
I don't know how to configure servor dns on linux,please help I thanck YOU (1 Reply)
Discussion started by: djest
1 Replies
5. AIX
I have an RS/6000 running AIX 5.3. I would like to get either dhcp client working or assigning it an ip would be fine as well. I have tried using smit to do it many times trying different things, and I can get an ip assigned but it doesn't communicate with the network or internet. I haven't been... (3 Replies)
Discussion started by: izzzy
3 Replies
6. IP Networking
Hello,
I am trying to authenticate through PEAP/mschap with freeradius 2.x and Active Directory.
I have followed this guide: Deploying RADIUS: Configuring Authentication with Active Directory
wbinfo works:
# wbinfo -a LOGIN%PASSWORD
plaintext password authentication failed
Could not... (0 Replies)
Discussion started by: sncr24
0 Replies
7. Solaris
If the OS is messed up with new COTS and we would like to go back to the last good configuration what are options available? (2 Replies)
Discussion started by: sam101
2 Replies
8. UNIX and Linux Applications
Hi All,
I've installed FreeRadius 2.2.0 in Oracle Solaris 10 1/13, and I'm getting Access-Reject when tried using 'radtest' tool. When debugging is enabled I'm getting the following message
Debug: ERROR: No authenticate method (Auth-Type) found for the request: Rejecting the user
I've... (0 Replies)
Discussion started by: Buddhike G
0 Replies
LEARN ABOUT CENTOS
radtest
RADTEST(1) FreeRADIUS Daemon RADTEST(1)
NAME
radtest - send packets to a RADIUS server, show reply
SYNOPSIS
radtest [-d raddb_directory] [-t pap/chap/mschap] [-x ] [-4 ] [-6 ] user password radius-server nas-port-number secret [ppphint] [nasname]
DESCRIPTION
radtest is a frontend to radclient(1). It generates a list of attribute/value pairs based on the command line arguments, and feeds these
into radclient. It's a fast and convenient way to test a radius server.
OPTIONS
-d raddb_directory
The directory that contains the RADIUS dictionary files. Defaults to /etc/raddb.
-t pap/chap/mschap/eap-md5
Choose the authentiction method to use. e.g. "-t pap", "-t chap", "-t mschap", or "-t eap-md5",. Defaults to "pap". Using EAP-MD5
requires that the "radeapclient" program is installed.
-x Enables debugging output for the RADIUS client.
-4 Use NAS-IP-Address for the NAS address (default)
-6 Use NAS-IPv6-Address for the NAS address (default)
user Username to send.
password
Password of the user.
radius-server
Hostname or IP address of the radius server. Optionally, you may specify a port by appending :port
nas-port-number
The value of the NAS-Port attribute. Is an integer between 0 and 2^31, and it really doesn't matter what you put here. 10 will do
fine.
secret The shared secret for this client.
ppphint
If you put an integer > 0 here, radtest (or actually radclient) will add the attribute Framed-Protocol = PPP to the request packet.
nasname
If present, this will be resolved to an IP address and added to the request packet as the NAS-IP-Address attribute. If you don't
specify it, the local hostname of the system will be used.
SEE ALSO
radiusd(8), radclient(1).
AUTHOR
Miquel van Smoorenburg, miquels@cistron.nl.
5 April 2010 RADTEST(1)