summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2019-04-18 22:51:02 +0200
committerChristian Poessinger <christian@poessinger.com>2019-04-18 22:51:02 +0200
commit90ad76c282f0bc57381a226f515d1aa0e4307185 (patch)
tree5e3dfb6af1e50e9526492325fb2635733f31c3e8
parent6d82b0e7a8b283f35dda6641b889b6d84fe15cfd (diff)
downloadvyos-documentation-90ad76c282f0bc57381a226f515d1aa0e4307185.tar.gz
vyos-documentation-90ad76c282f0bc57381a226f515d1aa0e4307185.zip
Login: add RADIUS system login chapter
-rw-r--r--docs/system/index.rst6
-rw-r--r--docs/system/system-users.rst (renamed from docs/system/systemusers.rst)39
2 files changed, 38 insertions, 7 deletions
diff --git a/docs/system/index.rst b/docs/system/index.rst
index f833bcc8..cea729e3 100644
--- a/docs/system/index.rst
+++ b/docs/system/index.rst
@@ -10,13 +10,13 @@ should be ready for further configuration which is described in this chapter.
.. toctree::
:maxdepth: 2
:hidden:
-
+
eventhandler
flowaccounting
host-information
serialconsole
- systemusers
+ system-users
syslog
task-scheduler
config-management
- time-zone \ No newline at end of file
+ time-zone
diff --git a/docs/system/systemusers.rst b/docs/system/system-users.rst
index ef153377..338b8b86 100644
--- a/docs/system/systemusers.rst
+++ b/docs/system/system-users.rst
@@ -3,10 +3,10 @@
System Users
------------
-The default vyos user account, as well as newly created user accounts, have all capabilities to configure the system.
-All accounts have sudo capabilities and therefore can operate as root on the system.
-Setting the level to admin is optional, all accounts on the system
-will have admin privileges.
+The default vyos user account, as well as newly created user accounts, have all
+capabilities to configure the system. All accounts have sudo capabilities and
+therefore can operate as root on the system. Setting the level to admin is
+optional, all accounts on the system will have admin privileges.
Creating Login User Accounts
@@ -54,3 +54,34 @@ The following command will load the public key `dev.pub` for user `jsmith`
.. code-block:: sh
loadkey jsmith scp://devuser@dev001.vyos.net/home/devuser/.ssh/dev.pub
+
+RADIUS authentication backend
+^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+VyOS supports using one or more RADIUS servers as backend for user authentication.
+
+The following command sets up two servers for RADIUS authentication, one with a
+discrete timeout of `5` seconds and a discrete port of `1812` and the other using
+a default timeout and port.
+
+.. code-block:: sh
+
+ set system login radius server 192.168.1.2 secret 's3cr3t0815'
+ set system login radius server 192.168.1.2 timeout '5'
+ set system login radius server 192.168.1.2 port '1812'
+ set system login radius server 192.168.1.3 secret 's3cr3t0816'
+
+This configuration results in:
+
+.. code-block:: sh
+
+ show system login radius
+ server 192.168.1.2 {
+ secret s3cr3t0815
+ timeout 5
+ port 1812
+ }
+ server 192.168.1.3 {
+ secret s3cr3t0816
+ }
+