Diferencia entre revisiones de «RADIUS»

De Enes Juriquilla
Sin resumen de edición
Sin resumen de edición
Línea 31: Línea 31:
     log {
     log {
     destination = files
     destination = files
    colourise = yes
        colourise = yes
         file = ${logdir}/radius.log
         file = ${logdir}/radius.log
         syslog_facility = daemon
         syslog_facility = daemon
Línea 38: Línea 38:
    auth_badpass = no
    auth_badpass = no
    auth_goodpass = no
    auth_goodpass = no
    msg_denied = "You are already logged in - access denied"
        msg_denied = "You are already logged in - access denied"
         }
         }


Línea 45: Línea 45:
       ENV {
       ENV {
       }
       }
       policy {
       policy { $INCLUDE policy.d/ }
    $INCLUDE policy.d/
        }
       $INCLUDE sites-enabled/
       $INCLUDE sites-enabled/

Revisión del 21:28 10 feb 2025


    1. Configuración de Servicio Radius

Una vez instalado y configurado el servicio de LDAP., se procede a configurar el servicios de Radius

Se edita el archivo /etc/freeradius/3.0/radius.conf

    prefix = /usr
    exec_prefix = /usr
    sysconfdir = /etc
    localstatedir = /var
    sbindir = ${exec_prefix}/sbin
    logdir = /var/log/freeradius
    raddbdir = /etc/freeradius/3.0
    radacctdir = ${logdir}/radacct
    name = freeradius
    confdir = ${raddbdir}
    modconfdir = ${confdir}/mods-config
    certdir = ${confdir}/certs
   cadir   = ${confdir}/certs
   run_dir = ${localstatedir}/run/${name}
   db_dir = ${raddbdir}
   libdir = /usr/lib/freeradius
   pidfile = ${run_dir}/${name}.pid
   correct_escapes = true
   max_request_time = 30
    cleanup_delay = 5
    max_requests = 16384
    hostname_lookups = no
    log {
    	destination = files
       colourise = yes
       file = ${logdir}/radius.log
       syslog_facility = daemon
       stripped_names = no
       auth = yes

auth_badpass = no auth_goodpass = no

       msg_denied = "You are already logged in - access denied"
       }
      checkrad = ${sbindir}/checkrad
     ENV {
     }
      policy { $INCLUDE policy.d/ }
     $INCLUDE sites-enabled/