Testing Radius Configure


Testing Radius Configure
Rad_tester Utility
The rad_tester utility replicates the functionality of a terminal server by sending RADIUS packets to the RADIUS server. This is useful for testing and developing code. After a request is accepted, you can manually send another request packet.

Configuring rad_tester
rad_tester configure Oracle Communications Billing and Revenue Management (BRM) RADIUS Manager. You must also configure the accounting and authentication ports, the client from where you will run the rad_tester utility, and the dictionary file. You can then create the authentication, start accounting, and stop accounting RADIUS input packet files.

Configuring Authentication Ports
The accounting and authentication ports are defined in the $CORE section of the RADIUS configuration file (BRM_home/apps/radius/config, where BRM_home is the directory in which BRM components are installed). This was done during RADIUS server configuration.

Setting IP Port
listen {
port = 1812
}
listen {
port = 1813
}

Client in the RADIUS Configuration File
Ensure that the client computer is included in the client list. The client list is defined in the section of the RADIUS configuration file (BRM_home/apps/radius/config).

client {
addr = IP-Address
secret = testing123
}

client {
addr = IP-Address
secret = testing123
}

Creating Input Packets
Create three input RADIUS packets: auth, start, and stop. You can include all three packets in a single file, or you can use three separate files (to test opcode, use a single file; to simulate timing, use three files). Place these files in a directory on the client.

Attribute_name = Attribute value

Running rad_tester
Starting rad_tester, ensure that the RADIUS server is running. Running rad_test Command as Follows

rad_test -h host_name -p 1812 -a 1813 -s testing123 -O 30

Authentication Request
An auth input packet simulates an authentication request from a Network Access Server (NAS).

Request-Type    =    Auth-Req
User-Name       =    username
User-Password   =    userpassword
NAS-Identifier  =    1.1.1.1
NAS-Port        =    1

Start Accounting Request
Start input packet simulates a start accounting request from the NAS. The Acct_Session_Id value must be changed to a different value each time this request is sent to RADIUS Manager. Each session ID number must be unique because RADIUS Manager discards duplicate requests.

Request-Type    =       Acct-Req
User-Name       =       username
NAS-Identifier  =       1.1.1.1
NAS-Port        =       1
Acct-Status-Type =      Start
Acct-Session-Id  =      10

Stop Accounting Request
Stop input packet simulates a stop accounting request from the NAS. The Acct_Session_Id value must be identical to the one specified in the corresponding start request packet.

Request-Type       =    Acct-Req
User-Name          =    username
NAS-Identifier     =    1.1.1.1
NAS-Port           =    1
Acct-Status-Type   =    Stop
Acct-Session-Id    =    10
Acct-Delay-Time    =    1
Acct-Session-Time  =    3600

Interim Accounting Request
Interim input packet simulates an update accounting request from the NAS. The Acct_Session_Id value must be identical to the one specified in the corresponding start request packet.

Request-Type       =    Acct-Req
User-Name          =    username
NAS-Identifier     =    1.1.1.1
Framed-IP-Address  =    1.1.1.1
NAS-Port           =    1
Acct-Status-Type   =    Interim-Update
Acct-Session-Id    =    10
Acct-Delay-Time    =    1
Acct-Session-Time  =    3600

Sending Input Packets to the RADIUS Server
Sending the sample input packets to the RADIUS server. Commands to simulate authentication and to Start & Stop Accounting for Users

rad_tester -h host_name -p 1812 -a 1813 -s testing123 -O 30 -f auth_pkt.sample
rad_tester -h host_name -p 1812 -a 1813 -s testing123 -O 30 -f start_pkt.sample
rad_tester -h host_name -p 1812 -a 1813 -s testing123 -O 30 -f stop_pkt.sample

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s