-BUILDING/INSTALLING A TRUST ROUTER:
+<h2>BUILDING/INSTALLING A TRUST ROUTER:</h2>
(Assumes you already have a Moonshot DVD installed.)
To build and install a Trust Router, you need to separately 'make' and 'make install' in both the moonshot/trust_router and moonshot/freeradius-server directories, in that order.
-CONFIGURING A TRUST ROUTER:
+<h2>CONFIGURING A TRUST ROUTER:</h2>
In addition to having a valid freeradius TLS/PSK configuration, a set of Trust Router and TID-specific configuration is required in order to use the Trust Router.
Before running the IDP AAA Server, you will need to configure freeradius to use the SQL key database that will be shared with the TIDS. This can be done by adding a file called 'psk' to the /etc/freeradius/mods-enabled directory with the following contents:
-sql psksql {
-
-driver = "rlm_sql_sqlite"
-
-filename = "/var/tmp/keys"
-
+sql psksql {<br/>
+driver = "rlm_sql_sqlite"<br/>
+filename = "/var/tmp/keys"<br/>
}
You will also need to add 'psksql' to the existing 'instantiate' section in etc/freeradius/radiusd.conf.
Before running TIDS for the first time, create the SQL database using the following commands:
-sqlite3 /var/tmp/keys
-
-sqlite3> create table psk_keys (keyid text primary key, key blob);
-
+sqlite3 /var/tmp/keys<br/>
+sqlite3> create table psk_keys (keyid text primary key, key blob);<br/>
^D
-Start the freeradius server (on Node-2, as root):
+Start the freeradius server (on Node-2, as root):>
root@debian:/opt/moonshot/sbin# ./radiusd -fxx -l stdout