Knowledgebase

Issue:

IOLAN Device Server OEM - Configuration - RADIUS - FreeRadius configuration information

Solution:

To use the Perle RADIUS dictionary the file must be appended to the /etc/raddb/dictionary file:

# cat dictionary.perle >> /etc/raddb/dictionary

The FreeRADIUS service must be restarted.

Example entries:

/etc/raddb/clients

client 10.10.200.89 {

        secret          = sds1

        shortname       = IolanSDS1

        nastype         = other

}

/etc/raddb/users

Network connection User (Rev Tel / SSH) with Menu Level and access to all ports except 2 and 4:

perle           Cleartext-Password := "perle"

                Service-Type = NAS-Prompt-User,

                Perle-User-Level = Menu,

                Perle-Line-Access-Port-2 = Disabled,

                Perle-Line-Access-Port-4 = Disabled

Network connection User (Rev Tel / SSH) with Admin Level

administrator   Cleartext-Password := "admin"

                Service-Type = NAS-Prompt-User,

                Perle-User-Level = Admin

The /etc/raddb/clients.conf file normally has a test entry for the FreeRADIUS server itself.

You can use the radtest utility to send a local RADIUS message to test.

There should be a localhost entry in the clients.conf file.

[root@RHEL3 root]# radtest

Usage: radtest user passwd radius-server[:port] nas-port-number secret [ppphint] [nasname]

[root@RHEL3 root]# radtest scs8 scs8 localhost:1812 0 testing123

Sending Access-Request of id 180 to 127.0.0.1:1812

        User-Name = "scs8"

        User-Password = "scs8"

        NAS-IP-Address = RHEL3

        NAS-Port = 1812

rad_recv: Access-Accept packet from host 127.0.0.1:1812, id=180, length=38

        Service-Type = NAS-Prompt-User

        Perle-User-Level = Menu

If testing radtest from another host then you must add a Client entry for that host.