Adding users to the radius database – D-Link DI-308 User Manual

DI-308 ISDN Remote Router

107

•

RADIUS State – Use to Enable or Disable RADIUS.

•

Type – Refers to the type of external password protocol. Currently, only

RADIUS is supported.

•

Server IP Address – This is the IP Address of your Unix- or NT-based RADIUS

server.

•

Port – The port number for the RADIUS server. The standard port number

specified by RFC 1700 is 1812 (shown above).

•

Key – This is a shared secret used to identify the DI-308 as a valid RADIUS

client.

The Key password should be stored in the client file in the RADIUS server’s

/etc/raddb

directory. Lines of the form:

# Client Name Key
#-----------------------------
192.168.0.1 dlink_customer

should be added to the client file. The Client Name field in the file gives the IP
address of the DI-308, and the Key field should be the same as the Key field in the
RADIUS Configuration submenu.

After a RADIUS server has been configured, the DI-308 will use it to authenticate
all users instead of checking its internal Dial-In User Profile.

Adding Users to the RADIUS Database

The DI-308 only uses the RADIUS database for user authentication. Except for the
User Name

,

Password and Framed_IP_Address fields, most standard RADIUS

attribute fields are ignored by the DI-308.

To add a user to the RADIUS database, edit the users file in the RADIUS server’s

/etc/raddb

directory, and add a line similar to the following:

joeuser

Password = “joepassword”

Each user should have a user name/password record in the Users database. It is also
possible to configure an IP address for each user by adding a line in the Users
database similar to the following:

Ip user

Password = “iusespecificip”, Framed_IP_Address =

192.168.0.117