Starting the Merit AAA Server
We include a script for starting the RADIUS server. The filename of the script is rad; it is installed in the directory /opt/UMC/radius.
To start the Merit AAA server:
- Log in as
root
.- Change the directory to /opt/UMC/radius, and start the program by typing:
cd /opt/UMC/radius./rad startDuring startup, the RADIUS server binds to the LDAP server. This process requires that the LDAP server be running before the RADIUS server is started.
The RADIUS process is automatically started whenever the Solaris host is started.
If you are using a Merit AAA server that is not supplied by Juniper Networks, you can start the Merit server by launching the RADIUS process.
radiusd -d <conf directory> -da <aaatv directory> -dl <log directory>
-A <acct directory> -n -p <auth port> -q <acct port> -f <fsm file> -pp <auth relay port> -qq <acct relay port> -g {'syslog' | 'logfile' | 'stderr'} -l <log format> -t <timeout> -v -z -h
- -d—Directory of users, clients, authfile, dictionary, configuration files
- -da—Directory in which the binary AATVs reside
- -dl—Directory into which the log files should go
- -A—Directory in which to put accounting records
- -n—New session table at start for local authorization service (LAS)
- -p—Port number on which to listen for authentication requests
- -q—Port number on which to listen for accounting requests
- -f—Allows the user to specify an alternate finite state machine (FSM) table file instead of the default radius.fsm file
- -pp—Port number on which to relay authentication requests
- -qq—Port number on which to relay accounting requests
- -g—Type of logging; select logfile, syslog, or stderr logging
- -t—Inactivity timeout value (minutes)
- -v—Displays RADIUS version
- -h—Displays this help syntax