Use FreeRadius as Proxy for Cisco ACS
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Mon Feb 27 16:34:34 CET 2012
Hi,
> home_server radiusACS {
> ipaddr = 10.215.25.100
> port = 1812
> type = auth+acct
> secret = "testing123"
> response_window = 20
> max_outstanding = 65536
> zombie_period = 40
> status_check = "status-server"
> ping_interval = 30
> check_interval = 30
> num_answers_to_alive = 3
> num_pings_to_alive = 3
> revive_interval = 120
> status_check_timeout = 4
> }
ACS is basic. it doesnt support status-server or anything else. just treat it as a dumb
RADIUS remote proxy - which means no, if you are proxying to it your box doesnt
need to be in an AD or anything
you can go REALLY basic
realm NULL {
authhost = 10.215.25.100:1812
accthost = 10.215.25.100:1813
secret = "testing123"
}
realm DEFAULT {
authhost = 10.215.25.100:1812
accthost = 10.215.25.100:1813
secret = "testing123"
}
once you are familiar with the system, setup and FR, then you can go down
the route of defining server pools and realms...
alan
More information about the Freeradius-Users
mailing list