This chapter describes commands that configure the RADIUS authentication backend. All of these commands apply to the currently active bundle.
set radius server name secret [ auth-port [ acct-port ]]Configure RADIUS server parameters. Multiple RADIUS servers may be configured by repeating this command, and up to 10 servers may be specified.
set radius timeout secondsSet the timeout for completion of RADIUS requests.
set radius retries #retriesSet the number of retries for RADIUS requests.
set radius me IP|ifname|hostnameSend the given IP in the RAD_NAS_IP_ADDRESS attribute to the server
set radius v6me IPv6Send the given IP in the RAD_NAS_IPV6_ADDRESS attribute to the server
set radius enable message-authenticAdds the Message-Authenticator attribute to the RADIUS request. The Message-Authenticator is an HMAC-MD5 checksum of the entire Access-Request packet using the shared secret as the key. This should protect the RADIUS server against online dictionary attacks. This is mandatory when using the EAP-RADIUS-Proxy and it's implicitly added to the request by Mpd.
set radius enable peer-as-callingForces mpd to send remote tunnel address in Calling-Station-Id instead of addres supplied by remote peer via tunnel (for PPTP and L2TP). Can be disabled for trusted peers. Default is enabled.