Test radius authentication – HP Virtual Connect 8Gb 20-port Fibre Channel Module for c-Class BladeSystem User Manual

Virtual Connect users and roles 76

Be sure that the username does not conflict with any of the local user accounts configured on the RADIUS

server host. Otherwise, the RADIUS server will use UNIX-based authentication to look up the local
/etc/passwd file. The server will not look up freeradius-server-2.1.9/raddb/users.

3.

Add the client entry to the file freeradius-server-2.1.9/raddb/clients.conf:

client <hostname/IP> {
ipaddr = <IP address>
secret = <plain-text secret>
require_message_authenticator = no
nastype = other
}

The RADIUS server ignores authentication requests from an unknown client. Therefore, if the client entry
is absent, the server ignores it. The server does not send a reject response.

4.

Add the following to the dictionary file /usr/local/share/freeradius/dictionary.hp for

HP:

ATTRIBUTE HP-VC-groups 192 string HP

The RADIUS server logs are available in the logfile /usr/local/var/log/radius/radius.log.

Test RADIUS authentication

Users with domain user role permissions can test their RADIUS configuration before making the configuration
active.
To test a RADIUS configuration:

1.

Be sure that RADIUS group settings are configured.

2.

Access the RADIUS Settings (RADIUS Server) screen (on page

74

).

3.

Enter the RADIUS configuration information.

4.

Click Test. The RADIUS Configuration Test screen appears.

5.

Enter a valid user name and password.

6.

Click Test.