Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

radiusconfig(8) [osx man page]

radiusconfig(8) 					    BSD System Manager's Manual 					   radiusconfig(8)

NAME
radiusconfig -- tool to configure radiusd SYNOPSIS
radiusconfig command [command-options] [-q] DESCRIPTION
radiusconfig is a utility for configuring radiusd and its configuration files. It must be run by root. USAGE
-q Suppress prompts. Queries -getconfig [RADIUS-DB-Directory] Returns configuration data from radiusd.conf and eap.conf in plist format. Reads the configuration files from /etc/raddb unless RADIUS-DB- Directory is specified. -getconfigxml [RADIUS-DB-Directory] Returns configuration data from radiusd.conf and eap.conf in xml plist format. Reads the configuration files from /etc/raddb unless RADIUS- DB-Directory is specified. -nascount Returns the number of RADIUS clients. -naslist [--with-status] Returns the list of RADIUS clients in plist format. If the --with-status option is used, an IMCP ping is sent to each client and the responses, or lack thereof, are included in the results. -naslistxml [--with-status] Returns the list of RADIUS clients in xml plist format. If the --with-status option is used, an IMCP ping is sent to each client and the responses, or lack thereof, are included in the results. -help Print usage information. -ver Displays version information. Setup ---capture-base-station base-station-IP primary-RADIUS-IP [secondary=IP] [wpa-key-timeout=minutes] [wait-for-restart] Pairs an Airport Base Station to a RADIUS server. The shared secret is set in the RADIUS client database and on the base station. -disable-tls Changes eap.conf to contain a commented-out TLS section. -enable-tls Changes eap.conf to contain an active TLS section. -installcerts private-key certificate [trusted-ca-list [yes | no [common-name]]] Changes eap.conf to contain an active TLS section and configures the certificates. The yes or no option specifies whether or not to check a certificate revocation list. The random file is replaced and the dh file is created if absent. -addclient nas-name shortname [type] Adds a client. -importclients xml-plist-file Imports a list of clients from a file. -removeclient nas-name [nas-name ...] Removes a client. -setconfig key value [key value ...] Sets parameters in the radiusd.conf and eap.conf files. -setgroup nas-name group-name Assigns an access control group for a specific client of the RADIUS server. -rotatelog [-n file-count] base-file Preserves file-count log files. -autorotatelog [on | off | status] [-n file-count] Configures a periodic task to rotate the radius logs on a daily basis. -getssid host Queries the base station at the host address for its WiFi network name (SSID). -start Tells launchd to keep RADIUS running. -stop Disables RADIUS in launchd. FILES
/usr/sbin/radiusconfig /etc/raddb/eap.conf /etc/raddb/radiusd.conf SEE ALSO
radiusd(8) MacOSX June 2, 2019 MacOSX

Check Out this Related Man Page

RADIUS(8)						    InterNetNews Documentation							 RADIUS(8)

NAME
radius - nnrpd RADIUS password authenticator SYNOPSIS
radius [-h] [-f config] DESCRIPTION
radius is an nnrpd authenticator, accepting a username and password from nnrpd (given to nnrpd by a reader connection) and attempting to authenticate that username and password against a RADIUS server. See readers.conf(5) for more information on how to configure an nnrpd authenticator. It is useful for a site that already does user authentication via RADIUS and wants to authenticate news reading connections as well. By default, radius reads pathetc/radius.conf for configuration information, but a different configuration file can be specified with -f. See radius.conf(5) for a description of the configuration file. OPTIONS
-f config Read config instead of pathetc/radius.conf for configuration information. -h Print out a usage message and exit. EXAMPLE
The following readers.conf(5) fragment tells nnrpd to authenticate all connections using this authenticator: auth radius { auth: radius default: <FAIL> default-domain: example.com } "@example.com" will be appended to the user-supplied identity, and if RADIUS authentication failes, the user will be assigned an identity of "<FAIL>@example.com". BUGS
It has been reported that this authenticator doesn't work with Ascend RADIUS servers, but does work with Cistron RADIUS servers. It's also believed to work with Livingston's RADIUS server. Contributions to make it work better with different types of RADIUS servers would be gratefully accepted. This code has not been audited against the RADIUS protocol and may not implement it correctly. HISTORY
The RADIUS authenticator was originally written by Aidan Cully. This documentation was written by Russ Allbery <rra@stanford.edu>. $Id: radius.pod 7664 2007-09-02 12:58:07Z iulius $ SEE ALSO
nnrpd(8), radius.conf(5), readers.conf(5) RFC 2865, Remote Authentication Dial In User Service. INN 2.5.3 2009-05-21 RADIUS(8)
Man Page