NETGEAR M4200 Software Administration Manual page 371
M4200 and m4300 series prosafe managed switches
Hide thumbs
Also See for M4200:
- Hardware installation manual (33 pages) ,
- Installation manual (2 pages)
Table of Contents
Advertisement
To configure RADIUS authentication, authenticate a user, and manually disconnect a user:
1.
Configure the switch's IP address (172.26.2.145 on VLAN 1).
The switch functions as the Dynamic Authorization Server (DAS).
(Netgear Switch) #config
(Netgear Switch) (Config)#interface vlan 1
(Netgear Switch) (Interface vlan 1)#ip address 172.26.2.145 /24
2.
Configure the RADIUS server.
(Netgear Switch) #config
(Netgear Switch) (Config)#radius server host auth 172.26.2.20
(Netgear Switch) (Config)#radius server key auth 172.26.2.20
Enter secret (64 characters max):12345678
Re-enter secret:12345678
3.
Configure change of authorization (CoA).
(Netgear Switch) (Config)#aaa server radius dynamic-author
(Netgear Switch) (config-radius-da)#client 172.26.2.167
(Netgear Switch) (config-radius-da)#auth-type all
4.
Configure RADIUS as the authentication method for Telnet.
(Netgear Switch) (Config)#aaa authentication login test1 radius
(Netgear Switch) (Config)#line telnet
(Netgear Switch) (Config-telnet)#login authentication test1
(Netgear Switch) (Config-telnet)#exit
(Netgear Switch) (Config)#exit
5.
On the Dynamic Authorization Client (DAC), install a RADIUS client.
The following example installs the FreeRADIUS client, which you can download from
http://freeradius.org/download.html
[root@localhost root]# cd /usr/local/etc/raddb/
Create test.txt file using vi.
[root@localhost raddb]# vi test.txt
User-Name = "aaa"
Framed-IP-Address= "172.26.2.155"
6.
Authenticate a Telnet user with RADIUS server credentials.
Managed Switches
on a DAC that runs a Linux operating system.
Security Management
371
Hide quick links:
Advertisement
Table of Contents
