[c-nsp] Open Source solution to deploy a radius server against Cisco devices?
Ray Burkholder
ray at oneunified.net
Thu Apr 2 22:46:16 EDT 2009
> Jon Lewis wrote:
> > Another option is Cistron Radius
> http://www.radius.cistron.nl/ which
> > is probably going to be pretty similar to Freeradius, since
> the latter
> > is apparently a fork of the former.
> >
> > Radiator is perl, so you get the 'source code', but it's not open
> > source and you do need to buy a license to use it.
> The perl aspect also makes it pretty easy to add new
> functionality or backends too (assuming you have some perl
> experience!) - we added some stuff to restrict what IP
> addresses could appear in a Framed-IP-Address entry in about
> an hour or so, for example.
>
FreeRadius has an in-process perl module for handling authetication,
authorization, accouting pre and post processing. By filling in the
skeleton, it is pretty easy to get customizations done. I had to work a bit
with the radius.conf files to get things in the right order, but things
worked out nicely. It provides a mechanism for returning customized vendor
attributes such as the Framed-IP-Address attribute.
--
Scanned for viruses and dangerous content at
http://www.oneunified.net and is believed to be clean.
More information about the cisco-nsp
mailing list