Freeradius Server Configuration Example; Configuring Radius Clients; Creating And Including An Attribute Dictionary - D-Link DWS-3000 Series User Manual
Unified wired & wireless access system
Hide thumbs
Also See for DWS-3000 Series:
- User manual (262 pages) ,
- Configuration manual (192 pages) ,
- Deployment manual (7 pages)
Table of Contents
Advertisement
D-Link Unified Access System
RADIUS Server Attribute Description
Vendor-Specific (26)
Radio-1-Power
Vendor-Specific (26)
Radio-2-Power
When you do not require authentication between the APs and the RADIUS server, the switch uses the password
"NOPASSWORD" in communications between the RADIUS client on the switch and the RADIUS server. The RADIUS client
on the switch uses this password when it retrieves entries from the server. When you do require AP authentication, the
password for AP authentication to the Unified Switch (separate from and in addition to AP authentication to the network) will
be in this field.
F
RADIUS S
REE
ERVER
FreeRADIUS is an open source RADIUS server that you can download free from
http://www.freeradius.org. The example in this section describes the files you need to configure in order to authenticate the
D-Link Unified Switch and the D-Link Access Point with the RADIUS server and to configure the Valid AP settings in the
RADIUS database.
Configuring RADIUS Clients
If you require the D-Link Unified Switch or D-Link Access Points to authenticate themselves with the RADIUS server, you
must configure client entries for the devices in the RADIUS server's etc/raddb/clients.conf file.
The entry contains the IP address of the client, the shared secret, and a nickname (or DNS name) for the device.
The following entry in the clients.conf file is for a switch with the following information:
•
IP address: 192.168.30.249
•
Subnet mask: 255.255.255.0
•
Shared secret: wireless
•
DNS name: wireless-sw1
The following code shows the format of the client entry in the clients.conf file:
client 192.168.30.249/24 {
secret
shortname
}
Creating and Including an Attribute Dictionary
You configure attributes in an attribute dictionary so that you can assign the attributes and values to an access point when
you configure it in the Valid AP database on the RADIUS server. For example, to assign a location to an access point, the
attribute you define has the following format:
ATTRIBUTE
D-Link-Wireless-AP-Location
Page 208
Table 89: RADIUS Attributes for the Access Point (Cont.)
Indicates a fixed power setting for
the radio.
Indicates a fixed power setting for
the radio.
C
ONFIGURATION
= wireless
= wireless-sw1
Range
0, 1-100 percent
0 indicates automatic power
assignment.
0, 1-100 percent
0 indicates automatic power
assignment.
E
XAMPLE
101
Software User Manual
Usage
Optional, if defined
and valid will
override auto power
configuration
Optional, if defined
and valid will
override auto power
configuration
string D-Link
Document 34CS3000-SWUM104-D10
02/15/2011
Hide quick links:
Advertisement
Table of Contents
