>To: [EMAIL PROTECTED]
>From: O Plameras
>Date: 03/04/2005 10:31PM
>cc: [email protected]
>Subject: Re: [SLUG] freeradius cisco aps mac authentication
>Cisco wireless AP will authenticate, authorize and account(AAA)
>against
>RADIUS server.
>
>So, it will also AAA with free RADIUS as I understand free radius.
>
>Since accounting is also provided by the RADIUS server,
>RADIUS needs to know the ip-address of cisco wireless AP to
>provide accounting services for that AP and
>so the RADIUS server supplies the ip-address itself. I do not
>think that if you use RADIUS for AAA it will allow DHCP.
>
>To check the available AAA config options, run config on your cisco
>AP.
>After entering the command:
>
>aaa new-model
>
>enter the '?' as the first character and only character on the
>next line. It will list the available 'aaa' command options.
>
>
>
>O Plameras
Freeradius allows you to lists the nas (waps) either individual or as a range of ips. I've put in a range so far as part of the testing.
An old server used to run openradius and do the dhcp thing, unfortunately that died and it had no documentation. So I'm sure there is some trick to making this happen.
Thanks for the tips, I've got some old 340s without the command line, but I've also got a 1200 that I should be able to test with. Part of me is thinking it might be the different options that you can tell the radius server to provide in response to the authentication, but so far they look look ppp details.
Regards
Robert
-- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
