Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentWM20 Controller
31323334353637383940
Step 4: Configuring the secondary IAS server (if applicable)
Summit WM20 Technical Reference Guide, Software Version 4.2 37
Dictionary file
File at /etc/chantry/raddb/dictionary.extreme the VSAs are:
# dictionary.extreme - Extreme Networks Summit WM Wireless LAN Controller VSA
dictionary
VENDOR Extreme 4329
BEGIN-VENDOR Extreme
Standard Attribute
ATTRIBUTE Extreme-URL-Redirection 1 string
ATTRIBUTE Extreme-AP-Name 2 string
ATTRIBUTE Extreme-AP-Serial 3 string
ATTRIBUTE Extreme-WM-AD-Name 4 string
ATTRIBUTE Extreme-SSID 5 string
ATTRIBUTE Extreme-BSS-MAC 6 string
END-VENDOR Extreme
Copy the file dictionary.extreme into the same directory where all the other vendor dictionaries are.
Default is /usr/local/share/freeradius/.
Then edit the file /usr/local/share/freeradius/dictionary and add an include statement for
dictionary.extreme. See extract below:
. . .
$INCLUDE dictionary.cabletron
$INCLUDE dictionary.cisco
$INCLUDE dictionary.extreme
#
Step 4: Configuring the secondary IAS server (if
applicable)
To configure the secondary IAS server on another computer, do the following:
1 If you are using computer certificate autoenrollment and Windows 2000 IAS, force a refresh of
computer Group Policy by typing secedit /refreshpolicy machine_policy from a command prompt.
If you are using computer certificate autoenrollment and Windows Server 2003 IAS, force a refresh of
computer Group Policy by typing gpupdate /target:computer from a command prompt.
2 If you are using PEAP-MS-CHAP v2 authentication and have obtained a computer certificate from a
commercial CA, use the Certificates snap-in to import it into the Certificates (Local Computer)\
Personal\Certificates folder.
3 Install IAS as an optional networking component.
4 If you are using Windows 2000 IAS, install Windows 2000 SP4.
5 The secondary IAS server computer must be able to access account properties in the appropriate
domains. If IAS is being installed on a domain controller, no additional configuration is required in
order for IAS to access account properties in the domain of the domain controller.
If IAS is not installed on a domain controller, you must configure the secondary IAS server computer
to read the properties of user accounts in the domain. For more information, see the “Enable the IAS
server to read user accounts in Active Directory” procedure previously described.