Cisco Headend Digital Broadband Delivery System
Chapter 1 Overview
2
4017610 Rev A
Overview of RADIUS and LDAP
SR 5.0 provides support for RADIUS by bundling a Pluggable Authentication
Module (PAM) to a RADIUS authentication module. Additionally, LDAP support in
SR 5.0 allows accessing of data stored in an information directory. Bundled in this
way, RADIUS and LDAP support provide a centralized authentication,
administration, and management solution to meet the needs of a large-scale
network.
Module (PAM) to a RADIUS authentication module. Additionally, LDAP support in
SR 5.0 allows accessing of data stored in an information directory. Bundled in this
way, RADIUS and LDAP support provide a centralized authentication,
administration, and management solution to meet the needs of a large-scale
network.
Configuration Process
To configure a client host for RADIUS and LDAP, follow this process.
CAUTION:
Only appropriately qualified and skilled personnel should attempt to install,
operate, maintain, and service this product. Incorrectly configuring the system
can lock all users out of the system. Correcting this requires a lengthy process
of booting from the OS media and undoing the changes.
Only appropriately qualified and skilled personnel should attempt to install,
operate, maintain, and service this product. Incorrectly configuring the system
can lock all users out of the system. Correcting this requires a lengthy process
of booting from the OS media and undoing the changes.
CAUTION:
Make certain to disable NIS before enabling RADIUS and LDAP support.
Running NIS and LDAP at the same time can cause damage to your system.
Make certain to disable NIS before enabling RADIUS and LDAP support.
Running NIS and LDAP at the same time can cause damage to your system.
1 Verify that the client is not using NIS by opening an xterm window on the client
host and typing svcs -a | grep nis/client and pressing Enter. The host displays
output similar to the following.
output similar to the following.
bash-3.00$
svcs -a | grep nis/client
disabled Jul_15 svc:/network/nis/client:default
bash-3.00$
2 Is NIS enabled on your system?
If yes, disable NIS by entering the following command as root user:
# svcadm -v disable -s nis/client svc:/network/nis/client:default disabled.
Important: Running NIS and LDAP at the same time can cause damage to
your system.
# svcadm -v disable -s nis/client svc:/network/nis/client:default disabled.
Important: Running NIS and LDAP at the same time can cause damage to
your system.
If no, continue with the next step in this procedure.
3 Configure a RADIUS client for RADIUS support.