09-24-2008 12:47 PM
We have several FC switches in our environment that we would like to move to RADIUS authentication. We need to know what type of RADIUS to use, and if needed, where to get VSAs for Brocade to apply to the RADIUS server.
10-10-2008 09:28 AM
Thanks for the feedback - the network engineer here is going to be working on building custom VSAs for Brocade devices, and we'll see how that goes. I'll post back with the results when they are available.
12-11-2010 03:13 PM
Hi , We have a brocade 48000 director class switchand we ar e using freeradius server 1.1.13 configured on a linux server for authenticating users . A ladap server is running for authentication at the backend of radius server .The server is authenticating the users but the users auhenticated ar assigned a default role of user in switch . How can we set the VSA in dictinary.brocade file and the configuration in user file so that the users can be authenticated with some different role say admin or zoneadmin etc ? Its urgent please reply asap.Thanks in advance.
12-12-2010 09:19 AM
this depends on you FOS code. The FOS Admin guide point to the correct dictionary entries.
But Why did you not authenticate directly against LDAP?
For the correct entries check page 105 of the attached Admin Guide.
12-12-2010 01:14 PM
Thanks for the reply Anderas our FOS version is 6.1.1d and kernel version is 126.96.36.199 . We are not using LDAP directly as it is the required in the setup . I have configured all the files of radius as per the directives given on page 91 of chapter 5 but it is not working . We are not using virtual fabric .Please advice .
12-12-2010 01:38 PM
4. Entry added in users file
DEFAULT Auth-Type := LDAP
# Fall-Through = Yes
12-13-2010 01:27 AM
with FOS 6.1 I assume that ADList and HomeAD are supported the others fro FOS 6.4 are not supported.
To be honest I have no skills with openRadius implementations.
I am using IAS (RADIUS implementation from Microsoft) and it works fine with FOS 5.3, 6.1,6.2,6.3 and 6.4
If you are not using AD try to delete these entries and try to write admin in lower case.