• 内容
• FreeRadiusのインストール
• radiusクライアントの設定
• Radius内のローカルユーザの設定
• Radiusデーモンの再起動
• Radiusのアカウントログの確認

内容

FreeRadiusを使用して、ユーザ名、パスワードの認証のみを行います。

FreeRadiusのインストール

[root@co5]# yum -y install freeradius
Loading "installonlyn" plugin
Setting up Install Process
Setting up repositories
extras 100% |=========================| 1.1 kB 00:00
updates 100% |=========================| 951 B 00:00
base 100% |=========================| 1.1 kB 00:00
addons 100% |=========================| 951 B 00:00
Reading repository metadata in from local files
primary.xml.gz 100% |=========================| 82 kB 00:00
################################################## 283/283
primary.xml.gz 100% |=========================| 226 kB 00:00
################################################## 506/506
Parsing package install arguments
Resolving Dependencies
--> Populating transaction set with selected packages. Please wait.
---> Downloading header for freeradius to pack into transaction set.
freeradius-1.1.3-1.2.el5. 100% |=========================| 55 kB 00:00
---> Package freeradius.i386 0:1.1.3-1.2.el5 set to be updated
--> Running transaction check

Dependencies Resolved

=============================================================================
Package Arch Version Repository Size
=============================================================================
Installing:
freeradius i386 1.1.3-1.2.el5 base 1.2 M

Transaction Summary
=============================================================================
Install 1 Package(s)
Update 0 Package(s)
Remove 0 Package(s)

Total download size: 1.2 M
Downloading Packages:
(1/1): freeradius-1.1.3-1 100% |=========================| 1.2 MB 00:00
Running Transaction Test
Finished Transaction Test
Transaction Test Succeeded
Running Transaction
Installing: freeradius ######################### [1/1]

Installed: freeradius.i386 0:1.1.3-1.2.el5
Complete!
[root@co5]#

radiusクライアントの設定

vi /etc/raddb/clients.conf

client 10.0.0.1 {
secret = password
shortname = radius-client
}

Radius内のローカルユーザの設定

vi /etc/raddb/users
/etc/rc.d/init.d/radiusd restart

user1 Auth-Type := Local, User-Password == "pass1"

Radiusデーモンの再起動

[root@co5 /]# /etc/rc.d/init.d/radiusd restart
RADIUS サービスを停止中: [ OK ]
RADIUS サービスを起動中: Mon Oct 6 13:20:52 2008 : Info: Starting - reading configuration files ...
[ OK ]
[root@co5 /]#

Radiusのアカウントログの確認

cat /var/log/radius/radacct/10.0.0.1/detail-20081006
Mon Oct 6 13:11:55 2008
Acct-Status-Type = Stop
User-Name = "user1"
Acct-Session-Id = "user1"
Framed-IP-Address = 10.0.10.120
NAS-IP-Address = 10.0.0.1
Client-IP-Address = 10.0.0.1
Acct-Unique-Session-Id = "067bc4544d125f30"
Timestamp = 1223266315

Mon Oct 6 16:25:54 2008
Acct-Status-Type = Start
User-Name = "user1"
Acct-Session-Id = "user1"
Framed-IP-Address = 10.0.10.120
NAS-IP-Address = 10.0.0.1
Client-IP-Address = 10.0.0.1
Acct-Unique-Session-Id = "067bc4544d125f30"
Timestamp = 1223277954

[root@co5s ~]#