Table of Contents
Advertisement
6.4
RADIUS
RADIUS (Remote Authentication Dial In User Service) is a security protocol for
AAA (Authorization, authentication and accounting), which is used to provide
centralized authentication for users who want to gain access to the network.
This section will define the processes necessary to install and configure the
RADIUS client on up to two servers on the WR-ZEN device.
The steps to install and configure a RADIUS server on an Ubuntu machine are
explained in
page 203.
Alternatively, the RADIUS settings are also located in the Web GUI under Admin-
istration > Security > Authentication.
6.4.1
RADIUS configuration files
The different existing configuration files to modify the operation of the protocol
are:
6.4.2
Verification of RADIUS installation
In order to verify the installation, the following set- up is configured (Figure ).
When a user authenticates a device, this device will send a message to the
CHAPTER
•
6
WR-ZEN Series User Manual Rev. v5.1
authentication will fail. With TACACS configuration in first line, the
first password is verified with both TACACS and RADIUS.
Appendix" TACACS+ and RADIUS server configuration" on
radiusd.conf: Contains protocol configuration parameters.
users: Contains users and access passwords.
clients.conf: Contains the list of clients that are allowed to make requests to
the RADIUS server.
templates.conf: The goal is to have a common configuration located in this
file and list only the differences in the individual sections. This feature is
more useful for sections such as "customers."
trigger.conf: Used to set triggers for snmptrap.
proxy.conf: RADIUS proxy and configuration directives.
policy.d: Configuration files for policies of acceptance, rejection, filter, etc.
of requests
6.4 RADIUS
117
Advertisement
Chapters
Table of Contents
