This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
сервис_freeradius [2020/04/23 16:57] val [FreeBSD] |
сервис_freeradius [2022/03/04 12:14] val [Debian] |
||
---|---|---|---|
Line 5: | Line 5: | ||
!!! Ставится 2-3 минуты !!! | !!! Ставится 2-3 минуты !!! | ||
- | ==== Debian 9, 10 ==== | ||
- | <code> | ||
- | root@server:~# apt install freeradius | ||
- | |||
- | root@server:~# cd /etc/freeradius/3.0/ | ||
- | </code> | ||
- | |||
==== Debian/Ubuntu ==== | ==== Debian/Ubuntu ==== | ||
<code> | <code> | ||
root@server:~# apt install freeradius | root@server:~# apt install freeradius | ||
- | |||
- | root@server:~# cd /etc/freeradius/ | ||
</code> | </code> | ||
Line 25: | Line 16: | ||
[root@server ~]# yum install freeradius-utils | [root@server ~]# yum install freeradius-utils | ||
- | [root@server ~]# cd /etc/raddb/ | + | [root@server ~]# ls /etc/raddb/ |
</code> | </code> | ||
- | ==== Windows ==== | ||
- | * [[http://freeradius.net/]] | ||
- | * [[http://val.bmstu.ru/unix/billing/FreeRADIUS.net-1.1.7-r0.0.2.exe]] | ||
===== Настройка сервера ===== | ===== Настройка сервера ===== | ||
Line 39: | Line 27: | ||
<code> | <code> | ||
- | server# cat clients.conf | + | server# cat /etc/freeradius/3.0/clients.conf |
</code><code> | </code><code> | ||
... | ... | ||
Line 52: | Line 40: | ||
} | } | ||
</code><code> | </code><code> | ||
- | server# :> users | + | server# :> /etc/freeradius/3.0/users |
- | server# cat users | + | server# cat /etc/freeradius/3.0/users |
</code><code> | </code><code> | ||
user1 Cleartext-Password := "rpassword1" | user1 Cleartext-Password := "rpassword1" | ||
Line 73: | Line 61: | ||
</code><code> | </code><code> | ||
- | server# cat radiusd.conf | + | server# cat /etc/freeradius/3.0/radiusd.conf |
</code><code> | </code><code> | ||
... | ... | ||
Line 81: | Line 69: | ||
... | ... | ||
</code><code> | </code><code> | ||
- | server# cat sites-available/default | + | server# cat /etc/freeradius/3.0/sites-available/default |
</code><code> | </code><code> | ||
authorize { | authorize { | ||
Line 96: | Line 84: | ||
... | ... | ||
</code><code> | </code><code> | ||
- | server# cat mods-available/radutmp | + | server# cat /etc/freeradius/3.0/mods-available/radutmp |
</code><code> | </code><code> | ||
... | ... | ||
Line 150: | Line 138: | ||
<code> | <code> | ||
root@server:~# service freeradius restart | root@server:~# service freeradius restart | ||
- | </code> | ||
- | |||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | [server:~] # service radiusd start | ||
- | </code> | ||
- | |||
- | ==== Windows ==== | ||
- | |||
- | <code> | ||
- | C:\FreeRADIUS.net>start_radiusd_debug.bat | ||
</code> | </code> | ||
Line 172: | Line 149: | ||
$ radtest user1 rpassword1 127.0.0.1 0 testing123 | $ radtest user1 rpassword1 127.0.0.1 0 testing123 | ||
+ | |||
+ | # tail -f /var/log/freeradius/radius.log | ||
$ echo "User-Name=401,User-Password=401,NAS-IP-Address=127.0.0.1" | radclient localhost auth testing123 | $ echo "User-Name=401,User-Password=401,NAS-IP-Address=127.0.0.1" | radclient localhost auth testing123 | ||
Line 231: | Line 210: | ||
<code> | <code> | ||
- | freeradius2# cat eap.conf | + | freeradius3# cat /etc/freeradius/3.0/mods-available/eap |
- | + | ||
- | freeradius3# cat mods-available/eap | + | |
</code><code> | </code><code> | ||
... | ... | ||
Line 239: | Line 216: | ||
... | ... | ||
</code><code> | </code><code> | ||
- | freeradius2# cat modules/mschap | + | freeradius3# cat /etc/freeradius/3.0/mods-available/mschap |
- | + | ||
- | freeradius3# cat mods-available/mschap | + | |
- | freeradius3# cat mods-available/preprocess | + | |
</code><code> | </code><code> | ||
... | ... | ||
Line 250: | Line 224: | ||
... | ... | ||
require_strong = yes | require_strong = yes | ||
+ | ... | ||
+ | </code><code> | ||
+ | freeradius3# cat /etc/freeradius/3.0/mods-available/preprocess | ||
+ | </code><code> | ||
... | ... | ||
with_ntdomain_hack = yes | with_ntdomain_hack = yes |