[RADIATOR] Tacacs Authentication to survive reloads ?

Heikki Vatiainen hvn at open.com.au
Fri May 11 15:55:14 CDT 2012


On 05/11/2012 09:38 PM, James wrote:
> I can't seem to get this working.

Try this instead:

>     ClientAttrDef device-type,Identifier

     ClientAttrDef device-type,Name

>     ClientAttrDef tacacs-key,TACACSPLUSKey
> </ClientListLDAP>
> 
> --8<--
> 
> Since we use different TACACS+ keys for different types of network
> devices, it is important that I be able to grab the key for a
> particular Client from each LDAP entry.

The above suggestion is based on the guess that device-type has the IP
address or name that would go into <Client IP/name> when doing a static
configuration.

Heikki

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.


More information about the radiator mailing list