| Table of Contents | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
Overview
Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users that connect and use a network service.
...
...
RADIUS Accounting Flow:
...
Configuration
Radius configuration is present within “RADIUS Accounting” option under “Logging Tab” of “Expert Config Section” (i.e. Expert Config Section-> Logging and edit “RADIUS Accounting”) as show below:
...
RADIUS Configuration
RADIUS Server Configuration
RADIUS Client Configuration
RADIUS client configuration mainly has configuration like:
On which lan profile (ip) RADIUS client need to be configured
Hostname
Timer Values like Retry time
Maximum Number of Retries
Overload Session ID i.e. basically to select the format like vega specific format or cisco VSA format or any other.
...
RADIUS Server Configuration
As name suggest this mainly has configuration with respect to RADIUS Server like:
...
RADIUS login configuration is present within “User Administration” option under “System Tab” of “Expert Config Section” (i.e. Expert Config Section-> System and edit “User Administration”) as show below:
...
Troubleshooting
You can easily troubleshoot RADIUS message flow by filtering wireshark pcap trace by filter "radius".
VEGA only has RADIUS client functionality; for RADIUS server, we can either use existing RADIUS server if present any, or download and install the great open source FreeRadius from www.freeradius.org.
In order to check how to configure FreeRadius with VEGA please refer to VEGA with FreeRadius.Here below is the screen capture of one RADIUS Accounting pcap trace:
...