Re: How to configure tac_plus (TACACS+ daemon) on Ubuntu Server
When I wrote this in 2011, it was after we tested my tac_plus and Cisco AAA commands - this was the production configuration (with some minor changes). We've played with several commands and both Field...
View ArticleRe: FreeRADIUS 3.0 with Two-Factor Authentication (2FA)
Was about to build one due to the exact same use case, when I bump into your post.Any plans on building/posting this on dockerhub?Otherwise, can I copy this to github and have an automated dockerhub...
View ArticleRe: FreeRADIUS 3.0 with Two-Factor Authentication (2FA)
I am not sure I'll be able to post it anytime soon. If you want to post it on GitHub with automated Docker Hub build, then that's fine. Credit to the site would be great! Please post back the GitHub...
View ArticleRe: Stacking 2960-S and 2960-X
Hi Andrew, are stacking modules for 2960X and 2060S could be used interchangeably? lets say 2960X-stack module is used in 2960S stacked switches and the other way around. Thank you!
View ArticleRe: Hardening EdgeRouter Lite – Part 3
Andrew, it is totally a helpful post with the guideline. I have pleased to read the entirety of the post. Great article thanks and keep posting things like this.
View ArticleRe: F5 BIG-IP LTM VE Home Lab
Eval licenses are good point to start with, and also for people having premium / official F5 accounts can use online labs provided by F5 directly, but limitations are testing HA features which is not...
View ArticleRe: Adding Two-Factor Authentication to FreeRADIUS
Following this manual on centos6 I get error in /var/log/secure radiusd: pam_unix(radiusd:auth): authentication failure; logname=admin uid=0 euid=0 tty= ruser= rhost= user=testuserAnd radiusd -XXX...
View ArticleRe: Migrated FreeRADIUS with Google Authenticator to a Docker container
Thanks for posting this it is helpful. I am trying to follow your example of assigning static ips to each container however I keep getting: Error starting userland proxy: listen udp 192.168.0.200:1812:...
View ArticleRe: Migrated FreeRADIUS with Google Authenticator to a Docker container
Could you post your docker-compose.yml file? Also, could you issue docker ps -a?
View ArticleRe: Migrated FreeRADIUS with Google Authenticator to a Docker container
Thanks for taking a look:Here is my docker ps -a before running docker compose:# docker ps -aCONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMESHere is my docker-compose.yml:version: "3"services:...
View ArticleRe: Migrated FreeRADIUS with Google Authenticator to a Docker container
I've never seen that error message before so I don't know if this will fix it.Could you comment out the following lines?# The primary network interfaceauto eth0iface eth0 inet dhcpSo, it should look...
View ArticleRe: FreeRADIUS 3.0 with Two-Factor Authentication (2FA)
thx for this great work! small addition:# Change permissionRUN chmod 600 /etc/freeradius/3.0/networkjutsu/.google_authenticator
View ArticleRe: FreeRADIUS 3.0 with Two-Factor Authentication (2FA)
I guess it depends. Mine didn't need to change permission since the permissions were copied over.Here's my host's file permission.$ ls -al .google_authenticator-r-------- 1 networkjutsu networkjutsu...
View ArticleRe: Hardening EdgeRouter Lite – Part 1
I was able to run command set service gui listen-address x.x.x.x (for my eth1 which is my LAN interface0But I am still able to login using my WAN ip. How do i disable this?
View ArticleRe: Hardening EdgeRouter Lite – Part 1
You'll need to create firewall rules and apply it to your WAN interface.
View ArticleRe: Hardening EdgeRouter Lite – Part 1
Hello. I ran the command aboveset service gui listen-address x.x.x.x for my LAN (eth1), but I am still able to login using my WAN ip (eth0).How do i disable WAN gui access?
View ArticleRe: How to configure tac_plus (TACACS+ daemon) on Ubuntu Server
how should i authenticate with .edu url? this is my lab! where i have to authenticate my user with any kind of school email with edu...
View ArticleRe: How to configure tac_plus (TACACS+ daemon) on Ubuntu Server
How should i authenticate my tacacs+ user with school email which ends with .edu?? this is my lab!
View ArticleRe: How to configure tac_plus (TACACS+ daemon) on Ubuntu Server
Did you create a Linux user account with the .edu at the end?
View Article