From 1f762c76bc521532139c2def678226bc1ed03d1d Mon Sep 17 00:00:00 2001 From: Christian Poessinger Date: Tue, 6 Aug 2019 09:37:55 +0200 Subject: system: RADIUS: add new CLI syntax for 1.3 RADIUS system login CLI has been refactored (https://phabricator.vyos.net/T1344) Adjust examples to new syntax. --- docs/system/login-users.rst | 35 +++++++++++++++++------------------ 1 file changed, 17 insertions(+), 18 deletions(-) diff --git a/docs/system/login-users.rst b/docs/system/login-users.rst index f330183f..559188ed 100644 --- a/docs/system/login-users.rst +++ b/docs/system/login-users.rst @@ -33,7 +33,7 @@ will show the contents of :code:`system login` configuration node: user jsmith { authentication { - encrypted-password $6$0OQHjuQ8M$AYXVn7jufdfqPrSk4/XXsDBw99JBtNsETkQKDgVLptXogHA2bU9BWlvViOFPBoFxIi.iqjqrvsQdQ./cfiiPT. + encrypted-password $6$0OQH[...]vViOFPBoFxIi.iqjqrvsQdQ./cfiiPT. plaintext-password "" } full-name "Johan Smith" @@ -63,7 +63,7 @@ key. .. code-block:: sh - set system login user jsmith authentication public-keys callisto key 'AAAAB3Hso...Q==' + set system login user jsmith authentication public-keys callisto key 'AAAABo..Q==' set system login user jsmith authentication public-keys callisto type 'ssh-rsa' RADIUS @@ -77,23 +77,25 @@ a default timeout and port. .. code-block:: sh - set system login radius-server 192.168.1.2 secret 's3cr3t0815' - set system login radius-server 192.168.1.2 timeout '5' - set system login radius-server 192.168.1.2 port '1812' - set system login radius-server 192.168.1.3 secret 's3cr3t0816' + set system login radius server 192.168.1.2 secret 's3cr3t0815' + set system login radius server 192.168.1.2 timeout '5' + set system login radius server 192.168.1.2 port '1812' + set system login radius server 192.168.1.3 secret 's3cr3t0816' This configuration results in: .. code-block:: sh show system login - radius-server 192.168.1.2 { - secret s3cr3t0815 - timeout 5 - port 1812 - } - radius-server 192.168.1.3 { - secret s3cr3t0816 + radius { + server 192.168.1.2 { + secret s3cr3t0815 + timeout 5 + port 1812 + } + server 192.168.1.3 { + secret s3cr3t0816 + } } .. note:: If you wan't to have admin users to authenticate via RADIUS it is @@ -111,7 +113,7 @@ networks when a link fails. .. code-block:: sh - set system login radius-source-address 192.168.1.254 + set system login radius source-address 192.168.1.254 Login Banner ^^^^^^^^^^^^ @@ -123,7 +125,4 @@ You are able to set post-login or pre-login messages with the following lines: set system login banner pre-login "UNAUTHORIZED USE OF THIS SYSTEM IS PROHIBITED\n" set system login banner post-login "Welcome to VyOS" -the **\\n** create a newline. - - - +**\\n** create a newline. -- cgit v1.2.3