The document outlines a webinar hosted by GLC Networks on December 15, 2016, focusing on using MikroTik with RADIUS. It covers topics such as RADIUS concepts, configuration with MikroTik, and presents the GLC Radius Manager. The session includes a demo and Q&A segment, emphasizing networking education and community engagement.

1. www.glcnetworks.com
Using Mikrotik with RADIUS
GLC webinar, 15 December 2016
Achmad Mardiansyah
achmad@glcnetworks.com
GLC Networks, Indonesia

2. www.glcnetworks.com
Agenda
● Introduction
● Radius concept
● Using Mikrotik with radius
● GLC radius manager
● Demo
● Q & A
2

3. www.glcnetworks.com
What is GLC?
● Garda Lintas Cakrawala (www.glcnetworks.com)
● An Indonesian company
● Located in Bandung
● Areas: Training, IT Consulting
● Mikrotik Certified Training Partner
● Mikrotik Certified Consultant
● Mikrotik distributor
3

4. www.glcnetworks.com
About GLC webinar?
● First webinar: january 1, 2010 (title:
tahun baru bersama solaris - new
year with solaris OS)
● As a sharing event with various
topics: linux, networking, wireless,
database, programming, etc
● Regular schedule: every 2 weeks
● Irregular schedule: as needed
● Checking schedule:
http://www.glcnetworks.com/main/sc
hedule
● You are invited to be a presenter
○ No need to be an expert
○ This is a forum for sharing: knowledge,
experiences, information
4

5. www.glcnetworks.com
Trainer Introduction
● Name: Achmad Mardiansyah
● Base: bandung, Indonesia
● Linux user since 1999
● Mikrotik user since 2007
● Certified Trainer (MTCNA/RE/WE/UME/INE/TCE)
● Mikrotik Certified Consultant
● Work: Telco engineer, Sysadmin, PHP programmer,
and Lecturer
● Personal website: http://achmadjournal.com
● More info:
http://au.linkedin.com/in/achmadmardiansyah
5

6. www.glcnetworks.com
Please introduce yourself
● Your name
● Your company/university?
● Your networking experience?
● Your mikrotik experience?
● Your expectation from this course?
6

7. www.glcnetworks.com
What is Mikrotik?
● Name of a company
● A brand
● A program (e.g. mikrotik academy)
● Headquarter: Riga, Latvia
7

8. www.glcnetworks.com
What are mikrotik products?
● Router OS
○ The OS. Specialized for networking
○ Website: www.mikrotik.com/download
● RouterBoard
○ The hardware
○ RouterOS installed
○ Website: www.routerboard.com
8

9. www.glcnetworks.com
What Router OS can do?
● Go to www.mikrotik.com
○ Download: what_is_routeros.pdf
○ Download: product catalog
○ Download: newsletter
9

10. www.glcnetworks.com
What are Mikrotik training & certifications?
10
Certificate validity is 3 years

11. www.glcnetworks.com
Radius
11

12. www.glcnetworks.com
What is RADIUS?
● Remote Authentication Dial-In User
Service (RADIUS)
● Client/server protocol
● Is used for AAA (authentication,
authorization, accounting)
● Centralised AAA
● Created by Livingston (now owned by
Lucent)
● de facto industry standard used by a
number of network product companies
and is a proposed IETF standard.
● RFC 2865
● RFC 2866 (RADIUS accounting)
12

13. www.glcnetworks.com
RADIUS implementation
● Consist of:
○ Radius server
○ NAS (Network Access Server). usually has 2
interfaces:
■ To radius server
■ To user
● Using UDP protocol
● No need to manager user at NAS
● Can be used with many technology:
(hotspot, pptp, pppoe, etc)
13
RADIUS
server
NAS
NAS NAS

14. www.glcnetworks.com
AAA security
• Authentication: only registered user can
access
– What you know: username and password
– What you have: token, sms
– What you are: retina scan, fingerprint
• Authorization: define rights of a user
– Access control
– Data access control
– Restriction
– Type of Service
• Accounting: recording of what user is
doing (useful for billing/reporting)
– Traffic volume
– Online time
– Session
– Log: login, logout
14

15. www.glcnetworks.com
Radius software
● Freeradius (free and opensource) → the radius engine only (no user
interface)
● User manager (mikrotik product)
● GLC radius (freeradius + web interface)
● Blablabla radius (freeradius + web interface)
●
15

16. www.glcnetworks.com
Using RADIUS
16

17. www.glcnetworks.com
Mikrotik services that can be supported by radius
● PPP
○ To provide PPPOE, PPTP, SSTP, etc
authentication
● Hotspot
○ Provide authentication of hotspot user
● DHCP
○ To allow registered MAC address only
● Login
○ Provide authentication to access mikrotik devices
● Wireless
○ To allow registered MAC address accessing our
network
17

18. www.glcnetworks.com
Configure Mikrotik to query radius manager
● Service: define services supported by
radius manager
● Server address: IP address of Radius
server
● Secret: secret word defined by radius
manager
18

19. www.glcnetworks.com
Mikrotik User Manager
● A radius manager software, made
by mikrotik
● Interface: Web based, CLI
● Require user-manager package
● Make sure the harddisk space is
enough to store your data
● To access
http://mikrotik-ip/userman
19

20. www.glcnetworks.com
Note: proprietary features
● Radius specification allows specific implementation of vendor
● Proprietary features -> the NAS from vendor X has feature Y, which can be
activated if the radius server is from vendor X too
● Sometimes its not open to public
20

21. www.glcnetworks.com
GLC RADIUS
21

22. www.glcnetworks.com
GLC radius software
● Based on freeradius, MySQL, PHP
● Recommended to run on linux
● Source code is closed (for interface)
● Unlimited user (there was a system with 10000+ user)
● Support prepaid, postpaid
● Stable -> it works well
● Support voucher system
22

23. www.glcnetworks.com
Some GLC radius
features
23

24. www.glcnetworks.com
QA
24

25. www.glcnetworks.com
Interested?
Just come to our
training...
Special price for webinar
attendees...
25

26. www.glcnetworks.com
End of slides
● Thank you for your attention
● Please submit your feedback: http://bit.ly/glcfeedback
● Like our facebook page: “GLC networks”
● Stay tune with our schedule
26