...

|| Device | SoftWLC |
|| DocMainTitle | Руководство администратора |
|| DocTitle3 | Eltex RADIUS |
|| fwversion | 1.8 |
|| issueDate | 26.10.2017 |

Description

The service is used to provide AAA mechanisms for Wi-Fi users connected with WPA-enterprise (EAP). Access points provide RADIUS authorization and authentication with the servers, and the servers request client data from a database. RADIUS also performs support functions for user authorization via ESR/BRAS.

Starting/stopping procedure

To stop the service, the following command is used:

...

eltex-radius stop/waiting

if it is not.

Configuration

Configuration file is located in /etc/eltex-radius. Of all the files, the following ones can be edited:

...

Start in debugging mode: eltex-radius -X

/etc/eltex-radius/local.conf

Main configuration file. Contains the following parameters:

...

# Settings of runtime NAS discovery
dynamic_clients=false
dynamic_client_subnet=192.168.0.0/16
dynamic_client_lifetime=3600
dynamic_client_rate_limit=false

NAS table

This table is included into radius database and contains addresses of clients (access points) that are allowed to send user authorization requests. If a client is not included into the table, authorization requests will be ignored. When the contents of the table is changed, restart eltex-radius. When EMS object tree is changed (access points are added/removed), the table is updated automatically, and eltex-radius is restarted.

Logging

Server logging can be configured in a section of /etc/eltex-radius/radiusd.conf log file. By default, the section is as follows:

...

Log rotation

For log rotation using logrotate, a configuration file should be created, the following is the example:

...