Now to install freeradius, as I use a radius server for user authentication with coovachilli. We will also install some library’s used by coovachilli.
apt-get update
apt-get upgrade
apt-get install freeradius freeradius-utils libtool libssl-dev libcurl4-openssl-dev
Now we need to set it up. open up /etc/freeradius/clients.conf and change the secret from “testing123” to a secure password that you will remember.
/etc/freeradius/3.0/clients.conf
secret = testing123
Now for adding users to freeradius. What I do is I delete the file /etc/freeradius/users and just create a new file, and start fresh. Here is the format used for user accounts:
用户名 Cleartext-Password := "用户密码"
useraccountname Cleartext-Password := "userpass1"
Simultaneous-Use = 999999,
Idle-Timeout = 86400,
Acct-Interim-Interval = 120,
WISPr-Bandwidth-Max-Down = 1236000,
WISPr-Bandwidth-Max-Up = 600000
so as you can guess useraccountname is the name of the user, and userpass1 is the password for that account. For the rest of the stuff
So with this, create as many users as you want to use. If you don’t want to limit a users speed, or timeout, then just don’t add those lines to that user and it won’t apply.
Next up is testing. restart the freeradius service, and then test the account you made to make sure it authenticates. So, for our above example, we would do the following:
service freeradius restart
radtest useraccountname userpass1 localhost 0 SecretCode
Where SecretCode 共享密钥 is the secret we changed in freeradius earlier in this tutorial. If everything worked, you should get some output like this:
Sending Access-Request of id 35 to 127.0.0.1 port 1812
User-Name = "useraccountname"
User-Password = "userpass1"
NAS-IP-Address = 127.0.1.1
NAS-Port = 0
rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=35, length=56
Idle-Timeout = 86400
Acct-Interim-Interval = 120
WISPr-Bandwidth-Max-Down = 1236000
WISPr-Bandwidth-Max-Up = 600000
This means the user was authenticated successfully, and freeradius is now setup!