Tripp Lite B0930082E4UM Owners Manual for B093- B097- and B098-Series Console - Page 176

9. Authentication Edit the RADIUS user's file to include group information and restart the RADIUS server. When using RADIUS authentication, group names are provided to the console server using the Framed-Filter-Id attribute. This is a standard RADIUS attribute and may be used by other devices that authenticate via RADIUS. To interoperate with other devices using this field, the group names can be added to the end of any existing content in the attribute: :group_name=testgroup1,users: The above example sets the remote user as a member of testgroup1 and users if groups with those names exist on the console server. Any groups that do not exist on the console server are ignored. When setting the Framed-Filter-Id, the system may also remove the leading colon for an empty field. To work around this, add some dummy text to the start of the string. For example: dummy:group_name=testgroup1,users: • If no group is specified for a user, for example AmandaJones, the user will have no user interface and serial port access, but limited console access. • Default groups available on the console server include admin for administrator access and users for general user access. TomFraser Cleartext-Password := "FraTom70" Framed-Filter-Id=":group_name=admin:" AmandaJones Cleartext-Password := "JonAma83" FredWhite Cleartext-Password := "WhiFre62" Framed-Filter-Id=":group_name=testgroup1,users:" JanetLong Cleartext-Password := "LonJan57" Framed-Filter-Id=":group_name=admin:" Additional local groups such as testgroup1 can be added via Users & Groups: Serial & Network. 176