DI-308 ISDN Remote Router

RADIUS State – Use to Enable or Disable RADIUS.

Type – Refers to the type of external password protocol. Currently, only RADIUS is supported.

Server IP Address – This is the IP Address of your Unix- or NT-based RADIUS server.

Port – The port number for the RADIUS server. The standard port number specified by RFC 1700 is 1812 (shown above).

Key – This is a shared secret used to identify the DI-308 as a valid RADIUS client.

The Key password should be stored in the client file in the RADIUS server’s /etc/raddb directory. Lines of the form:

# Client Name

Key

#-----------------------------

192.168.0.1

dlink_customer

should be added to the client file. The Client Name field in the file gives the IP address of the DI-308, and the Key field should be the same as the Key field in the RADIUS Configuration submenu.

After a RADIUS server has been configured, the DI-308 will use it to authenticate all users instead of checking its internal Dial-In User Profile.

Adding Users to the RADIUS Database

The DI-308 only uses the RADIUS database for user authentication. Except for the User Name,Password and Framed_IP_Address fields, most standard RADIUS attribute fields are ignored by the DI-308.

To add a user to the RADIUS database, edit the users file in the RADIUS server’s /etc/raddb directory, and add a line similar to the following:

joeuser

Password = “joepassword”

Each user should have a user name/password record in the Users database. It is also possible to configure an IP address for each user by adding a line in the Users database similar to the following:

Ip user Password = “iusespecificip”, Framed_IP_Address = 192.168.0.117

107

Page 114 Page 116
Page 115
Image 115
D-Link DI-308 manual Adding Users to the Radius Database
Page 114 Page 116
Top Page Image Contents