Radius

From SME Server
Jump to navigation Jump to search

Radius is configured to a minimal level on a standard SME9 installation. Out of the box it is used for PPTP VPN user authentication.

Daniel B. Provided the following information regarding using radius on SME as an authentication source for WPA2 Enterprise.

Radius should work out of the box for WPA2 AP. You have to create a host for your AP, with the correct IP of your AP, then set the radius secret:

db hosts setprop ap.domain.tld RadiusKey SuperSecretThing
signal-event remoteaccess-update

If you want to test radius with radtest (yum install freeradius-utils) it doesn't work as is you need to do the following:

Add this template to /etc/e-smith/templates-custom/etc/raddb/users/40ldap

DEFAULT    Auth-Type := LDAP

expand the raddb/uses template and any user in LDAP can be used in radtest.

Command format:

radtest {username} {password} {hostname} 10 {radius_secret}