How to test radius server

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

How to test radius server

freeunix
I read the /etc/npppd/npppd.conf
It's ok. except radius:)

"man npppd.conf" say:
authentication RADIUS type radius {
username-suffix "@example.com"

authentication-server {
address 192.168.0.1 secret "hogehoge"
}

}

then, I couldn't find /etc/radiusd.conf
I check the "man -k radius".
"man radiusd.conf" say:

client 192.168.0.0:/24 {
secret "secret"
msgauth-required yes
}
module set radius "secret" "testing123"


Wow, I must chenge the npppd.conf and radiusd.conf.

1.
npppd.conf:
authentication-server {
address 192.168.0.1 secret "hogehoge"
}

radiusd.conf:
client 192.168.0.0:/24 {
secret "secret"
msgauth-required yes
}
module set radius "secret" "hogehoge"


2.
npppd.conf:
authentication-server {
address 192.168.0.1 secret "hogehoge"
}

radiusd.conf:
client 192.168.0.0:/24 {
secret "secret"
msgauth-required yes
}
module set radius "hogehoge" "testing123"

where is in username...
It didn't to see... easy to understanding by "man npppd.conf" "man
radiusd.conf".
these exanmple aren't reciprocal.

good manual is "to see one time, can do it!"

Reply | Threaded
Open this post in threaded view
|

Re: How to test radius server

Stuart Henderson
On 2015-11-25, [hidden email] <[hidden email]> wrote:
> I read the /etc/npppd/npppd.conf
> It's ok. except radius:)

Can you explain what you're trying to do?

> client 192.168.0.0:/24 {
> secret "secret"
> msgauth-required yes
> }
> module set radius "secret" "testing123"

"module set radius" is for proxying to another RADIUS server.

If you want to authenticate users locally (system passwords) you can
use the "bsdauth" module.

> where is in username...

The username (and password) are sent by the PPP client. npppd takes
them and sends to the RADIUS server requesting authentication.