Using mikrotik with radius
•
2 likes•2,241 views
in this webinar, we were discussing about how can we get benefits from RADIUS, and also how to use Mikrotik with RADIUS support.
More Related Content
What's hot
What's hot (20)
Viewers also liked
Viewers also liked (20)
Similar to Using mikrotik with radius
Similar to Using mikrotik with radius (20)
More from Achmad Mardiansyah
More from Achmad Mardiansyah (13)
Recently uploaded
Recently uploaded (20)
Using mikrotik with radius
- 1. www.glcnetworks.com Using Mikrotik with RADIUS GLC webinar, 15 December 2016 Achmad Mardiansyah achmad@glcnetworks.com GLC Networks, Indonesia
- 2. www.glcnetworks.com Agenda ● Introduction ● Radius concept ● Using Mikrotik with radius ● GLC radius manager ● Demo ● Q & A 2
- 3. www.glcnetworks.com What is GLC? ● Garda Lintas Cakrawala (www.glcnetworks.com) ● An Indonesian company ● Located in Bandung ● Areas: Training, IT Consulting ● Mikrotik Certified Training Partner ● Mikrotik Certified Consultant ● Mikrotik distributor 3
- 4. www.glcnetworks.com About GLC webinar? ● First webinar: january 1, 2010 (title: tahun baru bersama solaris - new year with solaris OS) ● As a sharing event with various topics: linux, networking, wireless, database, programming, etc ● Regular schedule: every 2 weeks ● Irregular schedule: as needed ● Checking schedule: http://www.glcnetworks.com/main/sc hedule ● You are invited to be a presenter ○ No need to be an expert ○ This is a forum for sharing: knowledge, experiences, information 4
- 5. www.glcnetworks.com Trainer Introduction ● Name: Achmad Mardiansyah ● Base: bandung, Indonesia ● Linux user since 1999 ● Mikrotik user since 2007 ● Certified Trainer (MTCNA/RE/WE/UME/INE/TCE) ● Mikrotik Certified Consultant ● Work: Telco engineer, Sysadmin, PHP programmer, and Lecturer ● Personal website: http://achmadjournal.com ● More info: http://au.linkedin.com/in/achmadmardiansyah 5
- 6. www.glcnetworks.com Please introduce yourself ● Your name ● Your company/university? ● Your networking experience? ● Your mikrotik experience? ● Your expectation from this course? 6
- 7. www.glcnetworks.com What is Mikrotik? ● Name of a company ● A brand ● A program (e.g. mikrotik academy) ● Headquarter: Riga, Latvia 7
- 8. www.glcnetworks.com What are mikrotik products? ● Router OS ○ The OS. Specialized for networking ○ Website: www.mikrotik.com/download ● RouterBoard ○ The hardware ○ RouterOS installed ○ Website: www.routerboard.com 8
- 9. www.glcnetworks.com What Router OS can do? ● Go to www.mikrotik.com ○ Download: what_is_routeros.pdf ○ Download: product catalog ○ Download: newsletter 9
- 10. www.glcnetworks.com What are Mikrotik training & certifications? 10 Certificate validity is 3 years
- 12. www.glcnetworks.com What is RADIUS? ● Remote Authentication Dial-In User Service (RADIUS) ● Client/server protocol ● Is used for AAA (authentication, authorization, accounting) ● Centralised AAA ● Created by Livingston (now owned by Lucent) ● de facto industry standard used by a number of network product companies and is a proposed IETF standard. ● RFC 2865 ● RFC 2866 (RADIUS accounting) 12
- 13. www.glcnetworks.com RADIUS implementation ● Consist of: ○ Radius server ○ NAS (Network Access Server). usually has 2 interfaces: ■ To radius server ■ To user ● Using UDP protocol ● No need to manager user at NAS ● Can be used with many technology: (hotspot, pptp, pppoe, etc) 13 RADIUS server NAS NAS NAS
- 14. www.glcnetworks.com AAA security • Authentication: only registered user can access – What you know: username and password – What you have: token, sms – What you are: retina scan, fingerprint • Authorization: define rights of a user – Access control – Data access control – Restriction – Type of Service • Accounting: recording of what user is doing (useful for billing/reporting) – Traffic volume – Online time – Session – Log: login, logout 14
- 15. www.glcnetworks.com Radius software ● Freeradius (free and opensource) → the radius engine only (no user interface) ● User manager (mikrotik product) ● GLC radius (freeradius + web interface) ● Blablabla radius (freeradius + web interface) ● 15
- 17. www.glcnetworks.com Mikrotik services that can be supported by radius ● PPP ○ To provide PPPOE, PPTP, SSTP, etc authentication ● Hotspot ○ Provide authentication of hotspot user ● DHCP ○ To allow registered MAC address only ● Login ○ Provide authentication to access mikrotik devices ● Wireless ○ To allow registered MAC address accessing our network 17
- 18. www.glcnetworks.com Configure Mikrotik to query radius manager ● Service: define services supported by radius manager ● Server address: IP address of Radius server ● Secret: secret word defined by radius manager 18
- 19. www.glcnetworks.com Mikrotik User Manager ● A radius manager software, made by mikrotik ● Interface: Web based, CLI ● Require user-manager package ● Make sure the harddisk space is enough to store your data ● To access http://mikrotik-ip/userman 19
- 20. www.glcnetworks.com Note: proprietary features ● Radius specification allows specific implementation of vendor ● Proprietary features -> the NAS from vendor X has feature Y, which can be activated if the radius server is from vendor X too ● Sometimes its not open to public 20
- 22. www.glcnetworks.com GLC radius software ● Based on freeradius, MySQL, PHP ● Recommended to run on linux ● Source code is closed (for interface) ● Unlimited user (there was a system with 10000+ user) ● Support prepaid, postpaid ● Stable -> it works well ● Support voucher system 22
- 25. www.glcnetworks.com Interested? Just come to our training... Special price for webinar attendees... 25
- 26. www.glcnetworks.com End of slides ● Thank you for your attention ● Please submit your feedback: http://bit.ly/glcfeedback ● Like our facebook page: “GLC networks” ● Stay tune with our schedule 26