Miscellaneous Procedures > Configuring Groups on LDAP, NTLM, RADIUS, and TACACS+ Authentication Servers > Configuring Groups for RADIUS

Configuring Groups for RADIUS
The following list defines the values that to define when configuring a RADIUS authentication server on the OnSite.
auth1 server[:port] secret [timeout] [retries]
acct1 server[:port] secret [timeout] [retries]
where:
auth1: The first RADIUS authentication server.
acct1: The first RADIUS accounting server.
server: The RADIUS server address.
port: Optional. The default port name is “radius” and is looked up through /etc/services.
secret: The shared password required for communication between the OnSite and the RADIUS server.
retries: The number of times each RADIUS server is tried before another is contacted.
timeout: The default is 3 seconds. How long the authentication server should wait before sending a success or failure response.
To Configure Groups for RADIUS
1.
On the RADIUS server, open the /etc/raddb/users file for editing.
2.
Service-Type=Callback-Framed-User,
Callback-Number=”305”,
Framed-Protocol=PPP,
Framed-Filter-
Id=”:group_name=<Group1>[,<Group2>,...,<GroupN>]”,
Fall-Through=No
Note: If the Frame-Filter-Id already exist, append the group_name declaration to the string starting with a colon “:”
3.

Miscellaneous Procedures > Configuring Groups on LDAP, NTLM, RADIUS, and TACACS+ Authentication Servers > Configuring Groups for RADIUS