RADIUS
远端用户拨入验证服务(RADIUS, Remote Authentication Dial In User Service)是一个AAA协议,意思就是同时兼顾验证(authentication)、授权(authorization)及计费(accounting)三种服务的协议(protocol),通常用于网络存取、或流动IP服务,适用于局域网及漫游服务。
1 挂载光盘,mount /dev/cdrom /media
2 用yum可以直接安装服务 yum install freeradius freeradius-mysql freeradius-utils -y
3 安装完成以后修改配置文件,用yum 安装的配置文件在/etc/raddb/users 里面
4 vim /etc/raddb/users
#steve Cleartext-Password := "testing"
# Service-Type = Framed-User,
# Framed-Protocol = PPP,
# Framed-IP-Address = 172.16.3.33,
# Framed-IP-Netmask = 255.255.255.0,
# Framed-Routing = Broadcast-Listen,
# Framed-Filter-Id = "std.ppp",
# Framed-MTU = 1500,
# Framed-Compression = Van-Jacobsen-TCP-IP
找到上面这一段文字,然后全部取消掉注释。保存退出即可。
5 第一次启动使用: radiusd -X 或radiusd -X & (后台执行)
出现下面的提示则成功了。
Listening on authentication address * port 1812
Listening on accounting address * port 1813
Listening on command file /var/run/radiusd/radiusd.sock
Listening on authentication address 127.0.0.1 port 18120 as server inner-tunnel
Listening on proxy address * port 1814
Ready to process requests.
6 最后进行测试 。。
radtest yerunian test localhost 1812 testing123
**************************************************************************************
出现下面的提示则成功了
radtest testing password 127.0.0.1 0 testing123
Sending Access-Request of id 101 to 127.0.0.1 port 1812
User-Name = "testing"
User-Password = "password"
NAS-IP-Address = 127.0.0.1
NAS-Port = 0
Message-Authenticator = 0x00000000000000000000000000000000
rad_recv: Access-Reject packet from host 127.0.0.1 port 1812, id=101, length=20
阅读(2385) | 评论(0) | 转发(0) |