|
|
|
Secondary RADIUS server for "FSUVPN" now available
I've installed freeRADIUS 1.0.5 on mdsacns1.fsu.edu (updated the one on mdsoti to this level as well) and configured it identically to mdsoti.fsu.edu (except for the order of which LDAPs it hits). The FSU VPN concentrator should now be configured to use this as an alternate RADIUS server right next to mdsoti.fsu.edu. The IP addresses are 146.201.105.140 for mdsoti.fsu.edu and 146.201.2.68 for mdsacns1.fsu.edu.
I'll also need the hostname/IP of the concentrator so I can put it in the firewall on mdsacns1.fsu.edu. The RADIUS config in the concentrator should be identical to the one for mdsoti (same ports -- 1645 & 1646, same shared secret, etc.), except it should point to mdsacns1.fsu.edu instead of mdsoti.fsu.edu.
FWIW, this is exactly how we have the ERPVPN concentrator configured (two RADIUS servers, each capable of authenticating off of 5 LDAP servers).
-- Jeff
|
