Commit 98762f82 authored by pedrolab's avatar pedrolab

add radius

parent 0fd0bde4
this guide installs daloradius as frontend (WebGUI) to use freeradius backend
start with guide
update and upgrade as necessary
apt update
apt upgrade
install webserver
apt install apache2
[listen appropriate interfaces]( in `/etc/apache2/ports.conf`
install mariadb
apt install mariadb-server
install php modules
apt install php libapache2-mod-php php-mysql php-common php-gd php-mbstring php-curl php-xml
continue with guide
install php extensions
apt install php-mail php-mail-mime php-pear
Install [PHP Pear DB library](
pear channel-update
pear install MDB2
install freeradius
apt-get install freeradius freeradius-mysql freeradius-utils --no-install-recommends
on `/etc/freeradius/3.0/sites-enabled/default` I selected the particular network interface I want to listen (restrict request to the networks I trust), and then
service freeradius restart
use this script to create a user and database (first 2, then 6)
populate radius database and enter radius_user_password
mysql -u radius_user -p radius_db < /etc/freeradius/3.0/mods-config/sql/main/mysql/schema.sql
ln -s /etc/freeradius/3.0/mods-available/sql /etc/freeradius/3.0/mods-enabled/
Edit `/etc/freeradius/3.0/mods-enabled/sql` and change dialect from `sqlite` to `mysql` put user and passwords appropriately and uncomment option `read_clients = yes`
Install unzip
apt install unzip
Download daloradius
wget https://path/to/
mv daloradius-master daloradius
Prepare database
mysql -u radius_user -p radius_db < /var/www/html/daloradius/contrib/db/fr2-mysql-daloradius-and-freeradius.sql
mysql -u radius_user -p radius_db < /var/www/html/daloradius/contrib/db/mysql-daloradius.sql
Adjust permissions
chown -R www-data.www-data /var/www/html/daloradius/
chmod 664 /var/www/html/daloradius/library/daloradius.conf.php
Adjust daloradius config in `/var/www/html/daloradius/library/daloradius.conf.php`. With `msqli` and appropriate users and passwords for accessing the sql database
restart freeradius
systemctl restart freeradius
access daloradius in https://my_ip/daloradius (It is recommended protecting this site through VPN access and only being accessed through admin LANs or VLANs)
Other resources:
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment