beautypg.com

Example–creating a group – Brocade Communications Systems RFS6000 User Manual

Page 573

background image

Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide

571

53-1001931-01

Radius configuration commands

19

Example–creating a group

The

(config-radsrv-group)

sub-instance is explained in the example below:

1. Create a group called Sales in the local RADIUS server database.

RFController(config-radsrv)#group sales

2. Check the RADIUS user group’s configuration.

RFController(config-radsrv-group)#?

RADIUS user group configuration commands:

3. Use a

policy

command to configure group policies for the group created in Step 1.

RFController(config-radsrv-group)#policy ?

day Day of access policy configuration

time Configure time of access policy for this group

vlan VLAN id for this group

wlan Configure wlan access policy for this group

RFController(config-radsrv-group)#policy day weekdays

RFController(config-radsrv-group)#policy time start 12 30 end 15 30

4. Use the

policy vlan

command

to assign a VLAN ID of 10 to the Sales group.

RFController(config-radsrv-group)#policy vlan 10

5. Use the

policy wlan

command to allow only authorized users to access this group’s WLAN.

RFController(config-radsrv-group)#policy wlan 1 2 5

6. Use

(config-radsrv)#rad-user

to create a user called testuser and add it to the group.

RFController(config-radsrv)#rad-user testuser password testpassword group

sales

Mar 07 17:41:55 2008: RADCONF: Adding user "testuser" into local database

Mar 07 17:41:55 2008: RADCONF: User "testuser" is added to group "sales"

7. Use

(config-radsrv)#nas

to add a NAS entry for the group.

RFController(config-radsrv)#nas ?

A.B.C.D/M Radius client IP address

RFController(config-radsrv)#nas 10.10.10.0/24 ?

key Radius client shared secret

RFController(config-radsrv)#nas 10.10.10.0/24 key ?

0 Password is specified UNENCRYPTED

2 Password is encrypted with password-encryption secret

LINE The secret(client shared secret), upto 32 characters

RFController(config-radsrv)#nas 10.10.10.0/24 key 0 very-secret!!

8. Use

(config-radsrv)#proxy

to add a realm name for the group.

RFController(config-radsrv)#proxy realm mydomain.com server 10.10.1.10

port 1812 secret 0 testing

This manual is related to the following products:
See also other documents in the category Brocade Communications Systems Hardware: