Table of Contents
Advertisement
6.4
RADIUS
RADIUS (Remote Authentication Dial In User Service) is a security protocol for
AAA (Authorization, authentication and accounting), which is used to provide
centralized authentication for users who want to gain access to the network.
This section will define the processes necessary to install and configure the
RADIUS client on up to two servers on the WR-Z16 device.
The steps to install and configure a RADIUS server on an Ubuntu machine are
explained in
Alternatively, the RADIUS settings are also located in the Web GUI under Admin-
istration > Security > Authentication.
6.4.1
RADIUS configuration files
The different existing configuration files to modify the operation of the protocol
are:
6.4.2
Verification of RADIUS installation
In order to verify the installation, the following set- up is configured (Figure ).
When a user authenticates a device, this device will send a message to the
CHAPTER
•
6
WR-Z16 User Manual Rev. v5.0
RADIUS server and, if is the password of TACACS, the authentication
will fail. With TACACS configuration in first line, the first password is
verified with both TACACS and RADIUS.
Appendix" TACACS+ and RADIUS server configuration" on
radiusd.conf: Contains protocol configuration parameters.
users: Contains users and access passwords.
clients.conf: Contains the list of clients that are allowed to make requests
to the RADIUS server.
templates.conf: The goal is to have a common configuration located in this
file and list only the differences in the individual sections. This feature is
more useful for sections such as "customers."
trigger.conf: Used to set triggers for snmptrap.
proxy.conf: RADIUS proxy and configuration directives.
policy.d: Configuration files for policies of acceptance, rejection, filter, etc.
of requests
6.4 RADIUS
page 172.
103
Advertisement
Table of Contents
