Radius rfc 2138 attributes, Radius server configuration example (merit) – Extreme Networks Summit 300-48 User Manual

44

Summit 300-48 Switch Software User Guide

Managing the Switch

RADIUS RFC 2138 Attributes

The RADIUS RFC 2138 optional attributes supported are as follows:

•

User-Name

•

User-Password

•

Service-Type

•

Login-IP-Host

RADIUS Server Configuration Example (Merit)

Many implementations of RADIUS server use the publicly available Merit

©

AAA server application,

available on the World Wide Web at:

http://www.merit.edu/aaa

Included below are excerpts from relevant portions of a sample Merit RADIUS server implementation.
The example shows excerpts from the client and user configuration files. The client configuration file
(

ClientCfg.txt

) defines the authorized source machine, source name, and access level. The user

configuration file (

users

) defines username, password, and service type information.

ClientCfg.txt

#Client Name

Key

[type]

[version]

[prefix]

#----------------

---------------

--------------

---------

--------

#10.1.2.3:256

test

type = nas

v2

pfx

#pm1

%^$%#*(&!(*&)+

type=nas

pm1.

#pm2

:-):-(;^):-}!

type nas

pm2.

#merit.edu/homeless hmoemreilte.ses

#homeless

testing

type proxy

v1

#xyz.merit.edu

moretesting

type=Ascend:NAS v1

#anyoldthing:1234

whoknows?

type=NAS+RAD_RFC+ACCT_RFC

10.202.1.3

andrew-linux

type=nas

10.203.1.41

eric

type=nas

10.203.1.42

eric

type=nas

10.0.52.14

samf

type=nas

users

user

Password = ""

Filter-Id = "unlim"

admin

Password = "", Service-Type = Administrative

Filter-Id = "unlim"

show radius

Displays the current RADIUS client
configuration and statistics.

unconfig radius {server [primary | secondary]}

Unconfigures the radius client
configuration.

Table 11: RADIUS Commands (continued)

Command

Description