Configuring the RADIUS Server
Summary of the configuration procedure
You must configure your RADIUS server to work with the Management Card.
For examples of the RADIUS users file with Vendor Specific Attributes (VSAs) and an example of an entry in the dictionary file on the RADIUS server, see the Security Handbook.
1.Add the IP address of the Management Card to the RADIUS server client list (file).
2.Users must be configured with
See your RADIUS server documentation for information about the RADIUS users file, and see the Security Handbook for an example.
3.Vendor Specific Attributes (VSAs) can be used instead of the
Configuring a RADIUS server on UNIX® with shadow passwords
If UNIX shadow password files are used (/etc/passwd) with the RADIUS dictionary files, the following two methods can be used to authenticate users:
• If all UNIX users have administrative privileges, add the following to the RADIUS “user” file. To allow only Device Users, change the
•Add user names and attributes to the RADIUS “user” file, and verify the password against /etc/ passwd. The following example is for users bconners and thawk:
bconners |
| ||
| = | Admin | |
thawk |
| ||
| = | Device |
Supported RADIUS servers
American Power Conversion supports FreeRADIUS and Microsoft IAS 2003. Other commonly available RADIUS applications may work but have not been fully tested by American Power Conversion.
Network Management Card User’s Guide | 52 |