Table of Contents
Advertisement
avaya.com
2.3.5 /etc/raddb/radiusd.conf
This file is the main configuration file for the RADIUS server. You can enable or disable authentication
(eap, pap, mschap etc ....) and you can also add extra login information. You will need to uncomment the
line detail auth_log {.
This will create a file with the following format
detailfile = ${radacctdir}/%{Client-IP-Address}/auth-detail-%Y%m%d
2.3.6 /etc/init.d/radiusd
This file is the startup file for RADIUS process. Please check that you have a link to
/etc/rcX.d/S96radiusd (X can be 2, 3 or 5 depending on your run level). Also check that radiusd is
started with –y flag. You will write details about every authentication request in the radius.log file.
When you modify the configuration file, you have to restart RADIUS process using command
[root@linux2 raddb]# /etc/rc2.d/S96radiusd restart
2.4 RADIUS Client Configuration
Two different product lines, ES 460/470 Series and ERS 2500, 4500, 5500 each has the same logic for
configuration whereas the ERS 1600, 8300 and 8600 each has a different logic for configuration.
Network diagram with RADIUS client and server can be simplified and summarized in the following
diagram.
Telnet/SSH/CLI
Administrative User
802.1x (EAP) User
10.10.50.40
10.10.50.1
ERS 4548GT-PWR
ERS 8600
10.10.44.5
FreeRadius
Server
802.1x (EAP) User
Share secret = Dda
Authentication, Authorization and Accounting (AAA) for ERS and ES
November 2010
14
Technical Configuration Guide
Advertisement
Table of Contents
