HOWTO Configure Radius with an IPA Server
From Consultancy.EdVoncken.NET
Certain services, for example Wireless LAN access points, can authenticate against a Remote Authentication Dial In User Service (RADIUS) server.
Ideally, the RADIUS service should be integrated with your IPA service. One popular implementation of the RADIUS protocol is FreeRADIUS. A proper integration is on the FreeIPA roadmap, but can be attempted anyway. Quoting Ryan Skorstad:
I was able to get the radius server included with IPA operational by:
1. Installing the 'freeradius-ldap' rpm from yum
2. chmod 775 /etc/raddb/certs (so radiusd can write cert files)
3. Change your 'authorize' and 'authenticate' sections of /etc/raddb/radiusd.conf to:
authorize {
ldap
}
authenticate {
Auth-Type LDAP {
ldap
}
}
The radius server will now authenticate users against IPA's LDAP directory.
I have not tested this configuration extensively, I have only verified that it returned Access-Accept
for a valid user/pass/secret and Access-Reject for a bad user/pass/secret.
[edit] References
for income to an insured person's family, burial, funeral and other final expenses. Life insurance policies often allow the option ,