RADIUS
The RADIUS module is a client implementation of Remote Authentication Dial In User Service (RFC 2138). This module supports the i-Planet administrator and sets the RADIUS server or servers on the Authentication Parameters page of the Administration Console. You get to this page by clicking the Authentication link under the Servers section of the navigation frame of the Administration console. Fill in the fields labelled Radius Server and Radius Server Alternate.
The RADIUS shared secret must always be in the file /etc/opt/SUNWstnr/platform.conf, which you edit manually. You cannot specify it on the Authentication Page for the i-Planet Desktop.
To Set the RADIUS shared secret
-
Edit the file /etc/opt/SUNWstnr/platform.conf to set the line radius.secret= equal to the shared secret.
If you want the end users to type in the RADIUS server along with user name and password, use the following procedure to modify the /etc/opt/SUNWstnr/Radius.properties file on the i-Planet server to add another field on the RADIUS Authentication Page for the i-Planet Desktop.
To Modify the File Radius.properties File
-
Add an additional input field for the RADIUS server on the RADIUS Authentication Page for the i-Planet Desktop by adding the following line to the end of the /etc/opt/SUNWstnr/Radius.properties file:
TOKEN Radius Server:
Missing Cross Reference Target shows what the new .properties file will look like.
SCREEN TIMEOUT 60 TEXT RADIUS Authentication TOKEN User Name: PASSWORD Password: TOKEN Radius Server:
-
If you want end users to be able to type in the alternate RADIUS server, then just add another TOKEN.
The i-Planet server must be able to resolve the RADIUS server host name or names specified.
- © 2010, Oracle Corporation and/or its affiliates