[RADIATOR] Windows AD authentication with radius
Corey Gray
corey at tsa.com.au
Wed Jan 27 16:43:07 CST 2010
<http://caab.net>
Hi,
I have just been asked to test radiator to secure our wireless network. The requirement is to authenticate users from AD using there common name. I have tried to configure this in the config file but am having a bit of trouble getting radiator to parse the file correctly (im sure my file is inconsistent with radiators requirements) config details
Platform RHEL 5.3
Radiator 4.4
LogDir /var/log/radius
DbDir /etc/radiator
Trace 4
<client DEFAULT>
<AuthBy ADSI>
BindString LDAP://cn=%0,cn=users,dc=tsa,dc=com,dc=au
AuthUser cn=%0,cn=users,dc=tsa,dc=com,dc=au
AuthFlags 0
</AuthBy>
secret testpass
DupInterval 0
<Realm tsa.com.au>
</Realm>
<Realm DEFAULT>
</Realm>
Wed Jan 27 21:51:50 2010: ERR: Unknown object 'client' in /etc/radiator/Radd.cfg line 5
Wed Jan 27 21:51:50 2010: DEBUG: Finished reading configuration file '/etc/radiator/Radd.cfg'
Wed Jan 27 21:51:51 2010: DEBUG: Reading dictionary file '/etc/radiator/dictionary'
Wed Jan 27 21:51:52 2010: DEBUG: Creating authentication port 0.0.0.0:1645
Wed Jan 27 21:51:52 2010: ERR: Could not bind authentication socket: Address already in use
Wed Jan 27 21:51:52 2010: DEBUG: Creating accounting port 0.0.0.0:1646
Wed Jan 27 21:51:52 2010: ERR: Could not bind accounting socket: Address already in use
Wed Jan 27 21:51:52 2010: NOTICE: Server started: Radiator 4.4 on radiator.tsa.com.au (LOCKED)
My question....
What modules do I need for AD auth and what is required in the config file for this to work?
Im aware of the dictionary issue and that is soon to be resolved J
Thanks in advance
Corey
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20100127/bf98e685/attachment.html
More information about the radiator
mailing list