from http://freeradius.org/. After configure, make, install, do the
following:
-On the RADIUS server side, you need to install dictionary.ukerna and
-include it from the main dictionary file. Do this by adding:
+On the RADIUS server side, you need to install dictionary.ukerna to
+$prefix/etc/raddb and include it from the main dictionary file, by
+adding:
$INCLUDE dictionary.ukerna
-to $prefix/share/freeradius/dictionary.
+to $prefix/etc/raddb/dictionary. Make sure these files are world-
+readable; they weren't in my installation.
Edit $prefix/etc/raddb/users to add your test user and password:
- bob@PROJECT-MOONSHOT.ORG Cleartext-Password := secret
-
-Edit $prefix/etc/raddb/attrs to permit the release of keying attributes,
-by commenting out or removing the following:
-
- # MS-MPPE-Recv-Key =* ANY,
- # MS-MPPE-Send-Key =* ANY,
- # MS-CHAP-MPPE-Keys =* ANY,
+ bob@PROJECT-MOONSHOT.ORG Cleartext-Password := secret
Add an entry for your acceptor to $prefix/etc/raddb/clients.conf:
not the RADIUS server).
% gss-client -port 5555 -spnego -mech "{1 3 6 1 4 1 5322 22 1 18}" \
- -user <user> -pass <pass> <host> host@<host> "Testing GSS EAP"
+ -user <user>@<realm> -pass <pass> <host> host@<host> \
+ "Testing GSS EAP"
% gss-server -port 5555 -export host@<host>
Note: for SASL you will be prompted for a username and password.