Help Needed !!! FreeRADIUS Integration with MS AD
Pradyumna
neomatrixgem at gmail.com
Tue Jan 22 18:50:18 CET 2013
Hi,
Thanks I have now configured the freeradius and the Cisco switch is now getting authenticated against the AD user but I can't see the commands executed in the switch by this user in the radius account log.
Is it possible to see the command executed in accounting log ?
Regards,
/Neo
Sent from my iPhone
On 20-Jan-2013, at 5:57 PM, A.L.M.Buxey at lboro.ac.uk wrote:
> Hi,
>
>> I. FreeRADIUS integration with Microsoft AD
>
> http://deployingradius.com/documents/configuration/active_directory.html
>
>> II. Cisco switches needs to be the client
>
> http://www.cisco.com/cisco/web/support/index.html
>
> find your switch model and the documents for it.
>
>> II. The accounting information should also contain the commands executed
>> in the Switch as well, Example If a used called "test" login to the
>> switch and exexuted a command "Show config" that should be captured in the
>> accounting information.
>
> Cisco switches. their RADIUS for such stuff is weak and usually non existant. use TACACS+
>
>> Do i need a DB like MySQL for accounting or AD LDAP DB will help in doing
>> so?
>
> I'd advise using SQL for accounting records but its not necessary. a plain flat file will
> do just as well in the beginning.
>
> alan
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list