第四节：Daloradius配置用户及NAS

本节内容：通过daloradius添加用户，添加的用户作为VPN客户端的账号，添加NAS，通过本地测试添加的账号是否可以用

1、进入daloradis

2、增加vpn账号及密码

daloradius账户配置

3、增加nas信息

NAS IP 0.0.0.0/0 
NAS-Secert:testing123
NAS Type:other
NAS Shortname :radius-network
其中0.0.0.0/0 表示任意IP都可以连接到radius
testing123 设置连接radius的共享密钥

NAS IP 0.0.0.0/0

NAS-Secert:testing123

NAS Type:other

NAS Shortname :radius-network

其中0.0.0.0/0 表示任意IP都可以连接到radius

testing123 设置连接radius的共享密钥

daloradius-nas配置

上面nas 配置完成需要重启radiusd 才能生效

systemctl restart radiusd

1	systemctl restart radiusd

4、测试增加的账号是否能正确的连接到 radius

[root@Centos7 daloradius]# radtest jack 1234567890 127.0.0.1 1812 testing123

1	[root@Centos7 daloradius]# radtest jack 1234567890 127.0.0.1 1812 testing123

Sent Access-Request Id 63 from 0.0.0.0:38938 to 127.0.0.1:1812 length 74
	User-Name = "jack"
	User-Password = "1234567890"
	NAS-IP-Address = 127.0.0.1
	NAS-Port = 1812
	Message-Authenticator = 0x00
	Cleartext-Password = "1234567890"
Received Access-Accept Id 63 from 127.0.0.1:1812 to 0.0.0.0:0 length 20

Sent Access-Request Id 63 from 0.0.0.0:38938 to 127.0.0.1:1812 length 74

User-Name = "jack"

User-Password = "1234567890"

NAS-IP-Address = 127.0.0.1

NAS-Port = 1812

Message-Authenticator = 0x00

Cleartext-Password = "1234567890"

Received Access-Accept Id 63 from 127.0.0.1:1812 to 0.0.0.0:0 length 20

出现上面显示，代表连接成功