Specifications
268 Chapter 15 Configuring and Managing Open Directory
To assign an access control group to a client of the RADIUS service:
$ sudo radiusconfig -setgroup
nas-name
group-name
To configure the rotation of RADIUS service logs:
$ sudo radiusconfig -rotatelog [-n
file-count
]
base-file
To configure the automatic rotation of RADIUS service logs:
$ sudo radiusconfig -autorotatelog [on | off] [-n
file-count
]
To configure RADIUS service certificates:
$ sudo radiusconfig -installcerts
private-key
certificate
[
trusted-ca-list
[yes | no [
common-name
]]]
This command changes eap.conf to contain an active TLS section and configures the
certificates. This command also replaces the random file and creates the dh file if
absent.
Parameter Description
nas-name
The name of the client.
group-name
The name of the access control group.
Parameter Description
file-count
The number of log files to preserve.
base-file
The name of the log file.
Parameter Description
on Enables automatic log rotation.
off Disables automatic log rotation.
file-count
Specifies the number of log files to preserve.
Parameter Description
private-key
The file path to the client’s private key to use in the certificate.
certificate The file path to the certificate.
trusted-ca-list
The file path to the trusted CA list.
yes A request to check a certificate revocation list.
no A request to not check a certificate revocation list.
common-name
The common name.