Starting and Stopping the RADIUS Server
Juniper Networks includes a script for starting and stopping the RADIUS server. The filename of the script is rad, and it is installed in the directory /opt/UMC/radius.
To start the Merit AAA server, change the directory to /opt/UMC/radius and start the program by typing:
./rad startDuring start-up, the RADIUS server binds to the LDAP server. This process requires that the LDAP server be running before the RADIUS server is started.
The RADIUS daemon is automatically started whenever the Solaris host is started.
Stop the RADIUS server by typing:
./rad stopThe following command checks the status of the Merit AAA server:
./rad statusWhen a Merit AAA server is already used by the customer and the one supplied by Juniper Networks is not being used, the Merit server can be started by launching the RADIUS daemon.
radiusd -d <conf directory> -da <aaatv directory> -dl <log directory> -A <acct directory -n -p <auth port> -q <acct port> -f <fsm file> -pp <auth relay port> -qq <acct relay port> -g {'syslog' | 'logfile' | 'stderr'} -l <log format> -t <timeout> -v -z -h
- -a - Directory where to put accounting records
- -d - Directory of users, clients, authfile, dictionary, configuration files
- -da - Directory where the binary AATVs are
- -dl - Directory where the log files should go
- -f - Allows the user to specify an alternate finite state machine (FSM) table file instead of the default radius.fsm file
- -g - Select logfile, syslog, or stderr logging
- -h - Displays this help syntax
- -n - New session table at start for LAS
- -p - Port number on which to listen for authentication requests
- -pp - Port number on which to relay authentication requests
- -q - Port number on which to listen for accounting requests
- -qq - Port number on which to relay accounting requests
- -t - Inactivity time-out value (minutes)
- -v - Displays RADIUS version