Manualshelf

User guide

ManualsBrandsAllied Telesis ManualsComputer equipmentAT-iMG634 - R2
131132133134135136137138139140
NMS RADIUS Client Support Example Configurations
AlliedView NMS Administration Guide (Security Administration)
4-34
4.8.3.2 FreeRadius Example
FreeRadius is a free RADIUS server and is installed on 10.52.18.79.
Note: Downloads and documentation are available at http://freeradius.org/.
To configure for the NMS, begin with cd to
/usr/local/etc/raddb and perform the following steps:
Note: For the account Keith_K, the password being defined on RADIUS is different than the password assigned
when it had been created on the NMS. Moreover, the group association is being changed from what it had
been on the NMS. This will take effect when the user logs in for the first time.
Note: The account John_L had not been created on the NMS, but is defined on the RADIUS server. It will be
created on the NMS when the user logs in for the first time.
1. Add the Vendor Specific Attribute (VSA) to the dictionary:
VENDOR Allied-Telesis 207
BEGIN-VENDOR Allied-Telesis
ATTRIBUTE ATI-avnms-group 1 string
END-VENDOR Allied-Telesis
2. Add the RADIUS client (the NMS) to clients.conf
client 10.52.18.104 {
secret = nmssecret
shortname = avnmsuser
nastype = other
}
3. Add the users to the users file:
Keith_K Auth-Type := Local, User-Password == "knk_radius"
ATI-avnms-group = “Admin,Users”
John_L Auth-Type := Local, User-Password == "jhl6jhlX"
ATI-avnms-group = Users
4. Configure the NMS to use this RADIUS server, either by itself or within a list of RADIUS servers. Using the
AT_ConfigureRadius tool, assuming the server location is 10.52.18.79, the auth and acct ports are 1812 and 1814 respectively
(FreeRADIUS defaults), add the selected line to the NMS configuration, as shown in the following figure.