...
Starting in 3.0, ProVision supports 6connect vendor-specific attributes (VSAs) for use with RADIUS authentication. To use these attributes, you must perform the following three procedures:
- Add Add the 6connect VSA to the Radius installation
- Configure Configure Radius accounts
- Test the Radius account
- Configure ProVision for Radius Authentication
...
An example of a ProVision account configuration for the user file on a Freeradius system for version 4.0 and greater: http://cloud.6connect.com/Download/Radius/4.0/Freeradius-users-example.txt
Test Radius Accounts
For 3.9.3 and prior, test and response should look like the following:
#﹥radtest test test 50.23.215.162 6connect
Sending Access-Request of id 179 to 50.23.215.162 port 1812
User-Name = "test"
User-Password = "test"
NAS-IP-Address = 10.124.47.6
NAS-Port = 0
Message-Authenticator = 0x00000000000000000000000000000000
rad_recv: Access-Accept packet from host 50.23.215.162 port 1812, id=179, length=68
priv_admin = 1
priv_ipam_c = 1
priv_ipam_m = 1
priv_ipam_d = 1
For 4.0 and higher, test and response should look like the following:
﹤insert example﹥
Configure ProVision for Radius Authentication
...
- Log into 6connect ProVision
- Go to Admin -> ﹥ General Settings -> ﹥ Authentication
- Ensure that Radius functions are marked as available. Radius functions are always available on 6connect cloud instances. Radius functions are available on VM Images and Local Installations only if the relevant PHP Pear Radius Libraries have been installed.
- Click the Radius Enable checkbox.
- Fill in the hostname or ip address, authentication ports, accounting port, and shared Radius key as specified.