Manualshelf

User guide

ManualsBrandsAllied Telesis ManualsComputer equipmentAT-8525
121122123124125126127128129130
Security Administration NMS RADIUS Client Support
111
AlliedView NMS Administration Guide
4.8.3.2 FreeRadius Example
FreeRadius is a free RADIUS server and is installed on 10.52.18.79.
Note: Downloads and documentation are available at http://freeradius.org/.
To configure for the NMS, begin with cd to
/usr/local/etc/raddb and perform the following steps:
Note: For the account Keith_K, the password being defined on RADIUS is different than the password assigned when it had been
created on the NMS. Moreover, the group association is being changed from what it had been on the NMS. This will take
effect when the user logs in for the first time.
Note: The account John_L had not been created on the NMS, but is defined on the RADIUS server. It will be created on the NMS
when the user logs in for the first time.
1. Add the Vendor Specific Attribute (VSA) to the dictionary:
VENDOR Allied-Telesis 207
BEGIN-VENDOR Allied-Telesis
ATTRIBUTE ATI-avnms-group 1 string
END-VENDOR Allied-Telesis
2. Add the RADIUS client (the NMS) to clients.conf
client 10.52.18.104 {
secret = nmssecret
shortname = avnmsuser
nastype = other
}
3. Add the users to the users file:
Keith_K Auth-Type := Local, User-Password == "knk_radius"
ATI-avnms-group = “Admin,Users”
John_L Auth-Type := Local, User-Password == "jhl6jhlX"
ATI-avnms-group = Users
4. Configure the NMS to use this RADIUS server, either by itself or within a list of RADIUS servers. Using the
AT_ConfigureRadius tool, assuming the server location is 10.52.18.79, the auth and acct ports are 1812 and 1814
respectively (FreeRADIUS defaults), add the selected line to the NMS configuration, as shown in the following figure.