Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
radius:rad_realms [2024/02/12 05:10] systemradius:rad_realms [2024/02/12 05:34] (current) system
Line 5: Line 5:
  
 ----- -----
-  * Assigning realm to any of the RADIUS user types is compulsory+ 
-  * In a plain FreeRADIUS installationthis is typically derived from the suffix in a username e.g. @radiusdesk.com. +====== Principles of RADIUSdesk Realms ====== 
-  * RADIUSdesk maintains this option but also include the option not to enforce the realm to be derived from the suffix.+ 
 +===== Introduction ===== 
 + 
 +Realms are way of grouping users in RADIUS. Since RADIUSdesk is only a front-end for FreeRADIUS, realms are also supported by RADIUSdesk. 
 + 
 +===== Realms and usernames ===== 
 +  * Normally, in RADIUS deployments, you can determine the realm user belongs to based on the username. 
 +  * Let us assume we have alice@my_realm.com. We can assume that Alice belongs to the my_realm.com realm
 +  * RADIUSdesk allows you to follow this convention, but also gives you the flexibility to specify a user's email address as their username. 
 +  * So you can register Alice with her gmail email address as her username. 
 +  * We can now have the user alice.bodine@gmail.com which is part of the my_realm.com realm
 +  * In RADIUSdesk ALL Vouchers and Permanent Users belongs to one realm. 
 +  * BYOD devices automatically belong to the realm of the permanent user who owns the device. 
 + 
 +===== Clouds and Realms ===== 
 +  * A cloud can contain zero or more realms. 
 +  * The cloud thus becomes the owner of the realm. 
 +  * So if you want an administrator to manage the users of a realm, make sure that they have administrator rights for the cloud under which the realm was created. 
 + 
 +===== RADIUS Clients and Realms ===== 
 +  * If you add a RADIUS client, you have the option of only allowing network access to users from a specific realm (there can be several realms). 
 + 
 +===== VLAN and PMK ===== 
 +  * You may have noticed these two buttons in the toolbar of the realm management applet 
 +  * This is part of a new feature that is currently being developed and will be released soon. 
 + 
 + 
  
  • radius/rad_realms.1707707438.txt.gz
  • Last modified: 2024/02/12 05:10
  • by system