RADIUS

Configuring the Module

First, compile the module into Apache or use the apxs utility to instruct Apache to use mod_auth_radius as a dynamic module. You can obtain the module from its home page at http://www.freeradius.org/.

To compile the module statically into Apache itself, issue the following command:

./configure --add-module=/path/to/mod_auth_radius.c && make

The module is completely installed when the make process finishes without errors. Alternatively, to use mod_auth_radius as a dynamic module, use apxs as in the following example:

apxs -i -a -c mod_auth_radius.c

Next, edit the Apache httpd.conf file to instruct Apache to load the module. Include a line in the LoadModule section like this:

LoadModule radius_auth_module   libexec/mod_auth_radius.so

Then, scroll down to the AddModule section. Immediately following the line adding mod_auth.c, add the RADIUS module, as shown here:

AddModule mod_auth_radius.c

Now you need to create a section with specific configuration directives for the mod_auth_radius module. At the end of httpd.conf, create a section like the following example and configure it as explained next:

<IfModule mod_auth_radius.c>

AddRadiusAuth radiussservername:port sharedsecret timeout
AuthRadiusBindAddress 192.168.0.1
AddRadiusCookieValid 5

</IfModule>

The AddRadiusAuth directive tells Apache to authenticate against RADIUS. You specify the name of the RADIUS server, the port to use, the shared secret for the web client, and the timeout period Apache should wait before giving ...

Get RADIUS now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

RADIUS by

Configuring the Module

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly