This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
unifi:freeradius [2015/11/01 11:55] – brielle | unifi:freeradius [2015/11/01 12:06] – brielle | ||
---|---|---|---|
Line 9: | Line 9: | ||
===== Set up eap.conf ===== | ===== Set up eap.conf ===== | ||
- | In ''/ | + | Below is an example of what you need to put in '' |
- | + | ||
- | Below is an example of what you need to put in '' | + | |
< | < | ||
Line 99: | Line 97: | ||
===== Set up clients.conf ===== | ===== Set up clients.conf ===== | ||
+ | You'll need a client configuration for each Unifi device (or device group) that will be querying the FreeRADIUS server. | ||
+ | |||
+ | **Note:** //each device (such as a UAP) will need to have to connectivity to the FreeRADIUS server - this includes both a network route, and TCP/UDP ports 1812 and 1813.// | ||
+ | |||
+ | In ''/ | ||
+ | < | ||
+ | client 192.168.0.0/ | ||
+ | | ||
+ | nastype | ||
+ | } | ||
+ | </ | ||
+ | |||
+ | You can use single IPs ('' | ||
+ | |||
+ | ===== Set up the users file ===== | ||
+ | Users can be manually set up with entries in ''/ | ||
+ | |||
+ | A basic user example is: | ||
+ | < | ||
+ | joeuser Cleartext-Password := " | ||
+ | </ | ||
+ | |||
+ | A more complex one that also involves setting a VLAN that a user is part of: | ||
+ | < | ||
+ | joeuser Cleartext-Password := " | ||
+ | Tunnel-Type = 13, | ||
+ | Tunnel-Medium-Type = 6, | ||
+ | Tunnel-Private-Group-Id = 2 | ||
+ | </ | ||
+ | |||
+ | '' | ||
+ | //**Please note that RADIUS assigned VLANs is not currently supported by the Unifi Access Points. |