• Tidak ada hasil yang ditemukan

Saran

Dalam dokumen Konfigurasi FreeRADIUS Sebagai RADIUS Se (Halaman 53-64)

BAB V PENUTUP

5.2 Saran

Setelah melakukan konfigurasi pada FreeRADIUS sebagai RADIUS server diharap akan dilanjutkan untuk menambah web interface sehingga dapat digunakan untuk mengotrol pengguna hotspot, selain itu juga dapat digunakan untuk memanajemen jumlah paket data yang dapat digunakan oleh user.

45

DAFTAR PUSTAKA

[1] Jim Geier, Wireless Lans Implementing Interoperable Networks, Macmillan Technical Publising USA,1999.

[2] Josh. 2009. “Implementasi 802.1x EAP-TLS & PEAP-MSCHAPv2”,

FreeRADIUS

[3] DeKok Alan, “Wiki Home,” Animations. [Online]. Available:

http://wiki.freeradius.org/Home. 2014.

[4] C. Rigney, A. Rubens, W. Simpson, S. Willens, “Remote Authentication Dial In User Service (RADIUS)”, RFC 2138, Animation. [Online]. Available: http://www.ietf.org/rfc/rfc2138.txt. 1997.

[5] Aris, Diansyah, “Autentikasi Pengguna Jaringan Wireless Hotspot Berbasis Radius Server,” Animation. [Online]. Available: http://eprints.binadarma.ac.id/348/1/Autentikasi%20Pengguna%20Jaringan

%20Wireless%20Hotspot%20Berbasis%20Radius%20Server.pdf. 2013.

[6] Nopriansyah, “Desain Dan Implementasi Authentifikasi User Pada Jaringan

Wireless Top Komputer Palembang,” Animation. [Online]. Available:

http://news.palcomtech.com/wp-content/uploads/2012/08/Jurnal_Nopriansyah_DesaindanImplementasiAuthe

ntifikasiTI.pdf. 2012

[7] Julianto Achmad, Migunani, Efendi Rissal, “Otentikasi Penggunaan Layanan Wireless Lan Dengan FreeRADIUS Dan Chillispot,” Animation.

[Online]. Available:

http://www.provisi.ac.id/ejurnal/index.php/JTIKP/article/download/19/9.

[8] Chanifa Anik Izza, “RADIUS,” Animation. [Online]. Available:

http://tomatcoklat.wordpress.com/2012/07/24/394/. 2012

[9] Admin, “MySQL,” Animation. [Online]. Available:

46

[10] Admin, “Tutorial Belajar MySQL Part 2: Sejarah dan Masa Depan

MySQL,” Animation. [Online]. Available:

http://www.duniailkom.com/tutorial-mysql-sejarah-dan-masa-depan-mysql/.

[11] Admin, “FreeRADIUS,” Animation. [Online]. Available:

http://en.wikipedia.org/wiki/FreeRADIUS, 2014

[12] Agung Rizky, “Radius Server : Pengertian, Penjelasan dan Cara Install

Software Radius Server,” Animation. [Online]. Available:

1

LAMPIRAN

1. File schema.sql ############################################################### ############ # $Id$ # # #

# schema.sql rlm_sql - FreeRADIUS SQL Module #

# #

# Database schema for MySQL rlm_sql module #

# #

# To load: #

# mysql -uroot -prootpass radius < schema.sql #

# #

# Mike Machado <[email protected]> #

############################################################### ############

#

# Table structure for table 'radacct' #

CREATE TABLE radacct (

radacctid bigint(21) NOT NULL auto_increment, acctsessionid varchar(64) NOT NULL default '', acctuniqueid varchar(32) NOT NULL default '', username varchar(64) NOT NULL default '', groupname varchar(64) NOT NULL default '', realm varchar(64) default '',

nasipaddress varchar(15) NOT NULL default '', nasportid varchar(15) default NULL,

2

acctstarttime datetime NULL default NULL, acctstoptime datetime NULL default NULL, acctsessiontime int(12) default NULL, acctauthentic varchar(32) default NULL, connectinfo_start varchar(50) default NULL, connectinfo_stop varchar(50) default NULL, acctinputoctets bigint(20) default NULL, acctoutputoctets bigint(20) default NULL,

calledstationid varchar(50) NOT NULL default '', callingstationid varchar(50) NOT NULL default '', acctterminatecause varchar(32) NOT NULL default '', servicetype varchar(32) default NULL,

framedprotocol varchar(32) default NULL,

framedipaddress varchar(15) NOT NULL default '', acctstartdelay int(12) default NULL,

acctstopdelay int(12) default NULL,

xascendsessionsvrkey varchar(10) default NULL, PRIMARY KEY (radacctid),

KEY username (username),

KEY framedipaddress (framedipaddress), KEY acctsessionid (acctsessionid), KEY acctsessiontime (acctsessiontime), KEY acctuniqueid (acctuniqueid), KEY acctstarttime (acctstarttime), KEY acctstoptime (acctstoptime), KEY nasipaddress (nasipaddress) ) ;

#

# Table structure for table 'radcheck' #

3

CREATE TABLE radcheck (

id int(11) unsigned NOT NULL auto_increment, username varchar(64) NOT NULL default '', attribute varchar(64) NOT NULL default '', op char(2) NOT NULL DEFAULT '==', value varchar(253) NOT NULL default '', PRIMARY KEY (id),

KEY username (username(32)) ) ;

#

# Table structure for table 'radgroupcheck' #

CREATE TABLE radgroupcheck (

id int(11) unsigned NOT NULL auto_increment, groupname varchar(64) NOT NULL default '', attribute varchar(64) NOT NULL default '', op char(2) NOT NULL DEFAULT '==', value varchar(253) NOT NULL default '', PRIMARY KEY (id),

KEY groupname (groupname(32)) ) ;

#

# Table structure for table 'radgroupreply' #

CREATE TABLE radgroupreply (

id int(11) unsigned NOT NULL auto_increment, groupname varchar(64) NOT NULL default '', attribute varchar(64) NOT NULL default '',

4

op char(2) NOT NULL DEFAULT '=', value varchar(253) NOT NULL default '', PRIMARY KEY (id),

KEY groupname (groupname(32)) ) ;

#

# Table structure for table 'radreply' #

CREATE TABLE radreply (

id int(11) unsigned NOT NULL auto_increment, username varchar(64) NOT NULL default '', attribute varchar(64) NOT NULL default '', op char(2) NOT NULL DEFAULT '=', value varchar(253) NOT NULL default '', PRIMARY KEY (id),

KEY username (username(32)) ) ;

#

# Table structure for table 'radusergroup' #

CREATE TABLE radusergroup (

username varchar(64) NOT NULL default '', groupname varchar(64) NOT NULL default '', priority int(11) NOT NULL default '1',

KEY username (username(32)) ) ;

5

# Table structure for table 'radpostauth' #

CREATE TABLE radpostauth (

id int(11) NOT NULL auto_increment, username varchar(64) NOT NULL default '', pass varchar(64) NOT NULL default '', reply varchar(32) NOT NULL default '', authdate timestamp NOT NULL,

PRIMARY KEY (id) ) ;

2. RADIUS Server Tes Accept

rad_recv: Access-Request packet from host 127.0.0.1 port 48768, id=56, length=75 User-Name = "Fadil" User-Password = "bandaaceh" NAS-IP-Address = 127.0.0.1 NAS-Port = 0 Message-Authenticator = 0x4ec0c83c5da4add2f6779133c8fb04b4 # Executing section authorize from file /etc/raddb/sites-enabled/default +- entering group authorize {...}

++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop ++[digest] returns noop

[suffix] No '@' in User-Name = "Fadil", looking up realm NULL [suffix] No such realm "NULL"

++[suffix] returns noop

[eap] No EAP-Message, not doing EAP ++[eap] returns noop

6

[sql] expand: %{User-Name} -> Fadil [sql] sql_set_user escaped user --> 'Fadil' rlm_sql (sql): Reserving sql socket id: 4

[sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'Fadil' ORDER BY id

WARNING: Found User-Password == "...".

WARNING: Are you sure you don't mean Cleartext-Password? WARNING: See "man rlm_pap" for more information.

[sql] User found in radcheck table

[sql] expand: SELECT id, username, attribute, value, op FROM radreply WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radreply WHERE username = 'Fadil' ORDER BY id

[sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'Fadil' ORDER BY priority

rlm_sql (sql): Released sql socket id: 4 ++[sql] returns ok

rlm_sqlcounter: Entering module authorize code rlm_sqlcounter: Could not find Check item value pair ++[noresetcounter] returns noop

++[expiration] returns noop ++[logintime] returns noop ++[pap] returns updated Found Auth-Type = PAP

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

!!! Replacing User-Password in config items with Cleartext-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

7

!!! clear text password is in Cleartext-Password, and not in User-Password. !!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

# Executing group from file /etc/raddb/sites-enabled/default +- entering group PAP {...}

[pap] login attempt with password "bandaaceh" [pap] Using clear text password "bandaaceh" [pap] User authenticated successfully

++[pap] returns ok

# Executing section post-auth from file /etc/raddb/sites-enabled/default +- entering group post-auth {...}

++[exec] returns noop

Sending Access-Accept of id 56 to 127.0.0.1 port 48768 Finished request 0.

Going to the next request Waking up in 4.9 seconds.

Cleaning up request 0 ID 56 with timestamp +3 Ready to process requests.

3. RADIUS Server Tes Reject

rad_recv: Access-Request packet from host 127.0.0.1 port 35276, id=77, length=74 User-Name = "test" User-Password = "adi" NAS-IP-Address = 127.0.0.1 NAS-Port = 0 Message-Authenticator = 0x710f2d3529cdfdb509530cd29b3ad776 # Executing section authorize from file /etc/raddb/sites-enabled/default +- entering group authorize {...}

++[preprocess] returns ok ++[chap] returns noop ++[mschap] returns noop ++[digest] returns noop

8

[suffix] No '@' in User-Name = "test", looking up realm NULL [suffix] No such realm "NULL"

++[suffix] returns noop

[eap] No EAP-Message, not doing EAP ++[eap] returns noop

++[files] returns noop

[sql] expand: %{User-Name} -> test [sql] sql_set_user escaped user --> 'test' rlm_sql (sql): Reserving sql socket id: 4

[sql] expand: SELECT id, username, attribute, value, op FROM radcheck WHERE username = '%{SQL-User-Name}' ORDER BY id -> SELECT id, username, attribute, value, op FROM radcheck WHERE username = 'test' ORDER BY id

WARNING: Found User-Password == "...".

WARNING: Are you sure you don't mean Cleartext-Password? WARNING: See "man rlm_pap" for more information.

[sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 'test' ORDER BY priority

rlm_sql (sql): Released sql socket id: 4 [sql] User test not found

++[sql] returns notfound

rlm_sqlcounter: Entering module authorize code rlm_sqlcounter: Could not find Check item value pair ++[noresetcounter] returns noop

++[expiration] returns noop ++[logintime] returns noop

[pap] WARNING! No "known good" password found for the user. Authentication may fail because of this.

9

ERROR: No authenticate method (Auth-Type) found for the request: Rejecting the user

Failed to authenticate the user. Using Post-Auth-Type Reject

# Executing group from file /etc/raddb/sites-enabled/default +- entering group REJECT {...}

[attr_filter.access_reject] expand: %{User-Name} -> test attr_filter: Matched entry DEFAULT at line 11

++[attr_filter.access_reject] returns updated Delaying reject of request 0 for 1 seconds Going to the next request

Waking up in 0.9 seconds.

Sending delayed reject for request 0

Sending Access-Reject of id 77 to 127.0.0.1 port 35276 Waking up in 4.9 seconds.

Cleaning up request 0 ID 77 with timestamp +5 Ready to process requests.

Dalam dokumen Konfigurasi FreeRADIUS Sebagai RADIUS Se (Halaman 53-64)
Unduh sekarang "Konfigurasi FreeRADIUS..."

Garis besar

Dokumen terkait