настройки Cisco 871 (192.168.4.176)
aaa new-model
!
!
aaa authentication login default group radius local
aaa authentication login localauth local
aaa authorization exec default group radius local
aaa authorization network default group radius local
aaa accounting delay-start
aaa accounting exec default
action-type start-stop
group radius
!
aaa accounting network default
action-type start-stop
group radius
!
radius-server host 192.168.4.212 auth-port 1812 acct-port 1813 key $$$$$
настройки freeradius (192.168.4.212)
root@aaa-serv:/etc/freeradius# egrep -v "#" clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = testing123
require_message_authenticator = no
}
client 192.168.4.176 {
secret = $$$$$
nastype = cisco
}
root@aaa-serv:/etc/freeradius# egrep -v "#" users
user_cisco NAS-IP-Address == 192.168.4.176
cisco-avpair = "shell:priv-lvl=15"
aaa new-model
!
!
aaa authentication login default group radius local
aaa authentication login localauth local
aaa authorization exec default group radius local
aaa authorization network default group radius local
aaa accounting delay-start
aaa accounting exec default
action-type start-stop
group radius
!
aaa accounting network default
action-type start-stop
group radius
!
radius-server host 192.168.4.212 auth-port 1812 acct-port 1813 key $$$$$
настройки freeradius (192.168.4.212)
root@aaa-serv:/etc/freeradius# egrep -v "#" clients.conf
client localhost {
ipaddr = 127.0.0.1
secret = testing123
require_message_authenticator = no
}
client 192.168.4.176 {
secret = $$$$$
nastype = cisco
}
root@aaa-serv:/etc/freeradius# egrep -v "#" users
user_cisco NAS-IP-Address == 192.168.4.176
cisco-avpair = "shell:priv-lvl=15"
Комментариев нет:
Отправить комментарий