freeRADIUS proxy to RSA Securid
Arran Cudbard-Bell
A.Cudbard-Bell at sussex.ac.uk
Tue Sep 23 20:32:59 CEST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Alan DeKok wrote:
> Chris Haskins wrote:
>> Thank you for the input. Would I setup my freeRADIUS server as a
>> "UNIX/Linux client", or a "Communication Server", or other?
>
Communication Server: But i'm not sure if you add it as an agent host or
if you add it specifically using the RADIUS section of the
authentication manager.
> Perhaps the vendor you paid large sums of money to has
> "documentation"? Otherwise, it's not good to expect us (who haven't
> been paid for the RSA product) to explain how to use it.
Second that. The manuals are pretty comprehensive.
Hopefully with the RSA appliances they'll have brought a SecureCare
contract which gives them access to the online documentation and product
updates.
They're really the ones who need to be sorting out the RADIUS side on
the appliances, else they need to give you administrative access to the
appliance web interface (it includes a secure RDP client) so you can
sort the appliances out yourself. It's nothing to do with your
FreeRADIUS installation.
All you need to do there is define the RSA appliance in proxy.conf
following the examples.
I came so close to throwing ours across the server room... worst black
box we've ever brought (...and last).
Arran
- --
Arran Cudbard-Bell (A.Cudbard-Bell at sussex.ac.uk),
Authentication, Authorisation and Accounting Officer,
Infrastructure Services (IT Services),
E1-1-08, Engineering 1, University Of Sussex, Brighton, BN1 9QT
DDI+FAX: +44 1273 873900 | INT: 3900
GPG: 86FF A285 1AA1 EE40 D228 7C2E 71A9 25BB 1E68 54A2
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iEYEARECAAYFAkjZNlsACgkQcaklux5oVKKrjQCgij7ZyySlYz48dCZzyavrVFD2
Th4An0aFVeRCF0bm6eouXZp8q2Fi+T44
=H7H1
-----END PGP SIGNATURE-----
More information about the Freeradius-Users
mailing list