The client file identifies the systems that use the RADIUS server to authenticate user access. A client should be defined as a single device. For example:
client 10.0.10.22 {
secret = example
shortname = MPE5
}
client 10.0.10.23 {
secret = example
shortname = CMP56
}
The best practice is to define IP addresses rather than FQDNs. If a netmask is not given, the default is /32. The shared secret (in this example, example) must be defined on both the RADIUS server and entered into the CMP configuration (see Enabling and Configuring RADIUS on the CMP System). The shortname is used as an alias.
If multiple IP addresses are configured on the CMP system (such as SIG-A and SIG-B), use the IP address that would be used as the Source IP address of RADIUS requests sent to the RADIUS server.