Skybox Appliance 7000 Quick Start Guide
Skybox version 11.7.100
23
Note: To use RADIUS authentication, the
pam_radius
package must be installed on the
Skybox Server. To check whether the package is installed, run
rpm -qa | grep pam_radius
If you need help installing the package, contact
.
To configure RADIUS authentication
1. Open
/etc/pam.d/system-auth
in your editor.
2. Add the following line immediately after
auth sufficient pam_unix.so nullok try_
first_pass
:
auth sufficient pam_radius_auth.so
3. Save and close the file.
4. Open
/etc/pam.d/password-auth
in your editor.
5. Add the following line immediately after
auth sufficient pam_unix.so nullok try_
first_pass
:
auth sufficient pam_radius_auth.so
6. Save and close the file.
7. Open
/etc/pam_radius.conf
in your editor.
8. Replace
127.0.0.1 secret 1
with the information for your RADIUS server.
There are 3 fields per line in this file, each line representing a RADIUS server. Each line has
the following format:
server[:port] secret [timeout]
Blank lines or lines beginning with
#
are ignored.
l
The port number is optional. The default port is 1812.
l
The timeout field is optional. The default timeout is 3 seconds.
The timeout field controls how many seconds the module waits before deciding that the
server has failed to respond.
Multiple RADIUS server lines are tried in order. If a server returns success or failure, the
module returns the same result. If a server fails to respond it is skipped and the next server
is tried.
9. Save and close the file.
10. Add the user on the operating system level:
useradd <user1>
You do not need to set the password; it comes from RADIUS.
You can now log in to Skybox with the user credentials
<user1>
/
<password>
(using the
password stored on the RADIUS server for this user).
LDAP authentication
This topic explains how to configure LDAP authentication for Skybox Appliance.
