(RADIATOR) Radiator, Aruba, and RFC 3579
Hugh Irvine
hugh at open.com.au
Thu May 10 20:00:26 CDT 2007
Hello Wyman -
You can use the radpwtst utility to generate these requests and send
them to your equipment, which will of course need to be configured
correctly to process them.
Here is the help for radpwtst:
Radiator-3.17.1 hugh$ perl radpwtst -h
usage: radpwtst [-h] [-time] [-iterations n]
[-trace [level]] [-s server] [-secret secret]
[-noauth] [-noacct][-nostart] [-nostop] [-status]
[-chap] [-mschap] [-mschapv2] [-eapmd5] [-eapotp] [-
eapgtc] [-sip]
[-eaphex xxxxxxxxxxxxx]
[-accton] [-acctoff] [-framed_ip_address address]
[-auth_port port] [-acct_port port] [-identifier n]
[-user username] [-password password]
[-nas_ip_address address] [-nas_identifier string]
[-nas_port port] [-nas_port_type type] [-service_type
service]
[-calling_station_id string] [-called_station_id string]
[-session_id string] [-interactive]
[-delay_time n] [-session_time n] [-input_octets n]
[-output_octets n] [-timeout n] [-dictionary file,file]
[-gui] [-class string] [-useoldascendpasswords]
[-code requestcode] [-raw data] [-rawfile filename]
[-rawfileseq filename]
[-outport port] [-bind_address dotted-ip-address]
[attribute=value]...
You will need to check the Aruba documentation for a complete
description of what is required to be sent in the radius request
generated by radpwtst.
BTW - RFC 3579 refers to EAP - I suspect you might mean RFC 3576?
regards
Hugh
On 10 May 2007, at 23:43, Wyman Miles wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Does Radiator support RFC 3579 (unsolicited RADIUS messages)? I
> don't see
> any mention in the docs.
>
> In particular, I'm looking for the ability to move WLAN clients
> among roles
> by sending unsolicited Aruba-User-Role VSAs. Anyone doing anything
> like
> that?
>
> Thanks!
>
> Wy
>
>
> Wyman Miles
> Senior Security Engineer
> Cornell University, Ithaca, NY
> (607) 255-8421
> -----BEGIN PGP SIGNATURE-----
> Version: Mulberry PGP Plugin v3.0
> Comment: processed by Mulberry PGP Plugin
>
> iQA/AwUBRkMhZsRE6QfTb3V0EQJB2wCg6QrSYMuouh2XA3vMD/PWCCctolYAoOoe
> rH40EIRf+8MyTt7koRLFjJsX
> =UANx
> -----END PGP SIGNATURE-----
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
NB:
Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list