Introduction
1.
The RADIUS Protocol
1.1.
The FreeRADIUS Server
2.
RADIUS Concepts
2.1.
What is AAA?
2.1.1.
Authentication
2.1.2.
Authorization
2.1.3.
Accounting
2.1.4.
Auditing
2.1.5.
A Real World Analogy
2.2.
RADIUS System Components
2.2.1.
Network Access Server
2.2.2.
RADIUS Server
2.2.3.
Databases
2.2.4.
RADIUS Server Policies
2.3.
RADIUS Dictionaries
2.3.1.
Purpose of the Dictionaries
2.3.2.
Attribute Data Types
2.3.3.
Dictionary File Compatibility
2.3.4.
File Format
2.3.5.
ATTRIBUTE Definitions
2.3.6.
VALUE definitions
2.3.7.
VENDOR definitions
2.3.8.
BEGIN and END-VENDOR
2.3.9.
Include Statements
2.3.10.
Vendor Dictionaries
2.3.11.
Server-side Attributes
2.3.12.
Creating Dictionaries
2.3.13.
Creating Server-Side Attributes
2.3.14.
Creating Vendor-Specific Attributes
3.
The raddb/ directory
3.1.
Configuration File Syntax
3.1.1.
Configuration Item
3.1.2.
Including Files
3.1.3.
Variable References
3.1.4.
Sections
3.1.5.
Instance Names
3.2.
Data Types
3.2.1.
Booleans
3.2.2.
Integers
3.2.3.
Time delays
3.2.4.
IP Addresses
3.2.5.
Strings
3.2.6.
Filenames
3.3.
The radiusd.conf file
3.3.1.
log subsection
3.3.2.
security subsection
3.3.3.
thread pool subsection
3.4.
Clients definition
3.5.
The mods-available/ directory
3.5.1.
Layout of each Module Documentation
3.5.2.
String Expansions
3.5.3.
Connection pools
3.5.4.
always
3.5.5.
attr_filter
3.5.6.
cache
3.5.7.
chap
3.5.8.
cui
3.5.9.
detail
3.5.10.
dhcp_sqlippool
3.5.11.
dhcp
3.5.12.
digest
3.5.13.
dynamic_clients
3.5.14.
eap
3.5.15.
eap gtc
3.5.16.
eap leap
3.5.17.
eap md5
3.5.18.
eap mschapv2
3.5.19.
eap peap
3.5.20.
eap pwd
3.5.21.
eap tls
3.5.22.
eap ttls
3.5.23.
echo
3.5.24.
passwd - etc_group
3.5.25.
exec
3.5.26.
expiration
3.5.27.
expr
3.5.28.
files
3.5.29.
idn
3.5.30.
eap - inner_eap
3.5.31.
ippool
3.5.32.
krb5
3.5.33.
ldap
3.5.34.
linelog
3.5.35.
logintime
3.5.36.
passwd - mac2ip
3.5.37.
passwd - mac2vlan
3.5.38.
mschap
3.5.39.
exec - ntlm_auth
3.5.40.
opendirectory
3.5.41.
otp
3.5.42.
pam
3.5.43.
pap
3.5.44.
passwd
3.5.45.
perl
3.5.46.
preprocess
3.5.47.
radutmp
3.5.48.
realm
3.5.49.
redis
3.5.50.
rediswho
3.5.51.
replicate
3.5.52.
rest
3.5.53.
smbpasswd
3.5.54.
smsotp
3.5.55.
soh
3.5.56.
sometimes
3.5.57.
sql
3.5.58.
sqlcounter
3.5.59.
sqlippool
3.5.60.
sradutmp
3.5.61.
unix
3.5.62.
utf8
3.5.63.
wimax
3.5.64.
yubikey
3.6.
The mods-config/ directory
3.7.
Virtual Servers
3.7.1.
default
3.7.2.
inner-tunnel
3.7.3.
buffered-sql
3.7.4.
channel bindings
3.7.5.
control socket
3.7.6.
detail
3.7.7.
dhcp
3.7.8.
dhcp.relay
3.7.9.
proxy inner tunnel
3.7.10.
robust proxy accounting
3.7.11.
tls-template
3.7.12.
tls
3.7.13.
virtual.example
3.7.14.
vmps
3.8.
TLS
3.8.1.
TLS common configuration
3.8.2.
TLS cache
3.8.3.
TLS ocsp
3.8.4.
TLS verify
4.
Unlang
4.1.
Unlang Policy Language Overview
4.2.
Syntax
4.3.
Keywords in Unlang
4.3.1.
The break Statement
4.3.2.
The case Statement
4.3.3.
The else Statement
4.3.4.
The elsif Statement
4.3.5.
The foreach Statement
4.3.6.
The group Statement
4.3.7.
The if Statement
4.3.8.
The load-balance Statement
4.3.9.
The redundant Statement
4.3.10.
The redundant-load-balance Statement
4.3.11.
The return Statement
4.3.12.
The switch Statement
4.3.13.
The update Statement
4.3.14.
The module Statement
4.3.15.
The module.section Statement
4.3.16.
Built-in Modules
4.4.
Data Types
4.4.1.
Numbers
4.4.2.
Simple Words
4.4.3.
IP Addresses
4.4.4.
Single Quoted Strings
4.4.5.
Double-Quoted Strings
4.4.6.
The Backtick Operator
4.4.7.
Character Escaping
4.5.
Dynamic Expansion
4.5.1.
Attribute References
4.5.2.
Character Escaping
4.5.3.
Pre-defined Expansions
4.5.4.
Single Letter Expansions
4.5.5.
Module References
4.5.6.
Conditional Syntax
4.5.7.
String Length
4.5.8.
Printing as Integers
4.5.9.
Number of Attributes
4.5.10.
All Named Attributes
4.6.
Conditional Expressions
4.6.1.
The &Attribute-Name Operator
4.6.2.
The data Operator
4.6.3.
The module-code Operator
4.6.4.
Conditional Comparisons
4.6.5.
The == Operator
4.6.6.
The ( ) Operator
4.6.7.
The ! Operator
4.6.8.
The && Operator
4.6.9.
The || Operator
4.7.
Attribute Editing Statements
4.8.
Attribute Statement
4.9.
Attribute Names
4.10.
Operators
4.11.
Enforcement and Filtering Operators
4.12.
Values
4.13.
Configurable Failover
4.14.
Normal Processing
4.15.
Rewriting Return Code
4.16.
Overriding the Action Table
4.17.
Setting Actions for a Subsection
4.18.
Regular Expression Comparisons
5.
Upgrading to Version 3
5.1.
Directory Organization
5.2.
New Modules
5.3.
Changed Modules
5.4.
Deleted Modules
5.5.
Unlang Changes
5.6.
Other Changes
Published with GitBook
A
A
Serif
Sans
White
Sepia
Night
Share on Twitter
Share on Google
Share on Facebook
Share on Weibo
Share on Instapaper
FreeRADIUS Documentation
RADIUS Concepts
We need to talk about RADIUS Concepts here