110 lines
3.6 KiB
JSON
110 lines
3.6 KiB
JSON
{
|
|
"client_requirement": "client_is_administrator+",
|
|
"items": [
|
|
{
|
|
"type": "header_page_title",
|
|
"items": [
|
|
{
|
|
"type": "h1",
|
|
"text": "RADIUS"
|
|
},
|
|
{
|
|
"type": "p",
|
|
"text": "FreeRADIUS server configuration and shared secret."
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"type": "card",
|
|
"label": "Shared Secret",
|
|
"client_requirement": "client_is_administrator+",
|
|
"items": [
|
|
{
|
|
"type": "p",
|
|
"text": "Enter this secret in your access point or wireless controller as the RADIUS shared secret. It authenticates your APs to this router's RADIUS server."
|
|
},
|
|
{
|
|
"type": "pre_block",
|
|
"text": "%RADIUS_SECRET%"
|
|
},
|
|
{
|
|
"type": "p",
|
|
"text": "Use this router's IP address on the AP's VLAN as the RADIUS server address. Authentication port: 1812. Accounting port: 1813."
|
|
},
|
|
{
|
|
"type": "button_row",
|
|
"items": [
|
|
{
|
|
"type": "button_danger",
|
|
"action": "/action/radius/regenerate",
|
|
"method": "post",
|
|
"text": "Regenerate"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"type": "card",
|
|
"label": "Options",
|
|
"client_requirement": "client_is_administrator+",
|
|
"items": [
|
|
{
|
|
"type": "form",
|
|
"action": "/action/radius/options_save",
|
|
"method": "post",
|
|
"items": [
|
|
{
|
|
"type": "field",
|
|
"label": "MAC Address Format",
|
|
"name": "mac_format",
|
|
"input_type": "select",
|
|
"value": "%RADIUS_MAC_FORMAT%",
|
|
"options": [
|
|
{"value": "aabbccddeeff", "label": "aabbccddeeff"},
|
|
{"value": "aa-bb-cc-dd-ee-ff", "label": "aa-bb-cc-dd-ee-ff"},
|
|
{"value": "aa:bb:cc:dd:ee:ff", "label": "aa:bb:cc:dd:ee:ff"},
|
|
{"value": "AABBCCDDEEFF", "label": "AABBCCDDEEFF"},
|
|
{"value": "AA-BB-CC-DD-EE-FF", "label": "AA-BB-CC-DD-EE-FF"},
|
|
{"value": "AA:BB:CC:DD:EE:FF", "label": "AA:BB:CC:DD:EE:FF"}
|
|
],
|
|
"hint": "Format used in the FreeRADIUS users file. Must match your AP/controller's expected format."
|
|
},
|
|
{
|
|
"type": "field",
|
|
"label": "Apply DEFAULT Rule To",
|
|
"name": "apply_to",
|
|
"input_type": "select",
|
|
"value": "%RADIUS_APPLY_TO%",
|
|
"options": [
|
|
{"value": "all", "label": "All clients"},
|
|
{"value": "wireless", "label": "Wireless clients only (NAS-Port-Type = Wireless-802.11)"}
|
|
],
|
|
"hint": "Scoping to wireless only prevents the DEFAULT rule from assigning a VLAN to unknown wired switch ports."
|
|
},
|
|
{
|
|
"type": "field",
|
|
"label": "Auth Logging",
|
|
"name": "logging",
|
|
"input_type": "checkbox",
|
|
"checkbox_label": "Log auth requests",
|
|
"value": "%RADIUS_LOGGING%",
|
|
"hint": "Enables auth logging in radiusd.conf (auth, auth_accept, auth_reject). High volume on busy networks."
|
|
},
|
|
{
|
|
"type": "button_row",
|
|
"items": [
|
|
{
|
|
"type": "button_primary",
|
|
"action": "/action/radius/options_save",
|
|
"method": "post",
|
|
"text": "Save"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|