Unterschiede

Hier werden die Unterschiede zwischen zwei Versionen angezeigt.

--- f11:technik:raspberrypi:hotspotdm3kb:raspeasyhpdb [2014/12/05 17:47]
dm3kb
+++ f11:technik:raspberrypi:hotspotdm3kb:raspeasyhpdb [2019/09/29 12:03] (aktuell)
@@ Zeile 64: / Zeile 64: @@
 Erase all Radius information from "ehs_noraddata_0.2p3.sql" and use this modifyed file to \\
 create the tables needed for EASY-Hotspot.\\
-ehs_noraddata_0.2p3.sql can be found in: /opt/EasyHotspot/install
+ehs_noraddata_0.2p3.sql can be found in: /opt/EasyHotspot/install\\
+Copy it to e.g. database_HP-only-NoRadius-NoData.sql
+and use vi to earse all radius related operations\\
+\\
+Then use this file to create the EASY-Hotspot tables in the same DB that already contain the FreeRadius tabels.\\
+\\
 <code>
 root@raspberrypi:~# mysql -u root -p easyhpradiusdb < /home/pi/easyhotspot/easyhotspot/install/database_HP-only-NoRadius-NoData.sql
@@ Zeile 73: / Zeile 77: @@
 ==Check tables==
+Check what tables have been created:
 <code>
 mysql -u root -p easyhpradiusdb
@@ Zeile 116: / Zeile 119: @@
 ==Set DB-User Permissions==
-As we skipped Admin.sql no radius user has been created. To split responsibilities, easyhotspot needs to access all tables and radius will only be allowd to the radius tables ( radacct, radcheck, radgroupcheck, radgroupreply, radpostauth, radreply, radusergroup )
+As we skipped **Admin.sql** no radius user has been created. To split responsibilities, easyhotspot needs to access all tables and radius will only be allowd to the radius tables (This are: radacct, radcheck, radgroupcheck, radgroupreply, radpostauth, radreply, radusergroup )
 **Note:** __First it is explained step by step a bit below all commands are listed as a Copy & paste block!!__
-Start with creating the easyhotspot user:
+Start with creating the  users :
 <code>
 mysql -u root -p
-Enter password: 2
+Enter password: ???
 mysql>CREATE USER 'easyhotspot'@'localhost';
@@ Zeile 175: / Zeile 178: @@
+# Grant usage for radius
 mysql> GRANT SELECT ON easyhpradiusdb . radcheck TO  'radius'@'%' IDENTIFIED BY  'Radpass' WITH MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0 ;
 Query OK, 0 rows affected (0.01 sec)
@@ Zeile 209: / Zeile 213: @@
 <code>
 mysql -u root -p
-Enter password: 2
+Enter password: ???
 CREATE USER 'easyhotspot'@'localhost';
@@ Zeile 236: / Zeile 240: @@
 FLUSH PRIVILEGES;
+# Grant usage for radius
 GRANT SELECT ON easyhpradiusdb . radcheck TO  'radius'@'%' IDENTIFIED BY  'Radpass' WITH MAX_QUERIES_PER_HOUR 0 MAX_CONNECTIONS_PER_HOUR 0 MAX_UPDATES_PER_HOUR 0 MAX_USER_CONNECTIONS 0 ;
@@ Zeile 277: / Zeile 282: @@
-<del>==Create a user to test radius login==
+==Create a user to test radius login==
+<del>
+This user is not managed via Easy-Hotspot, so creation is **optional**. \\</del>
-This user is not managed via Easy-Hotspot, so creation is **optional**.
 <code>
 echo "insert into radcheck (username, attribute, op, value) values ('user1','Cleartext-Password',':=','passwd1');" | mysql -u root -p easyhpradiusdb
 </code>
-Check new user entry in table radcheck
+<del>Check new user entry in table radcheck\\</del>
 <code>
 mysql> select * from radcheck where username='user1';
@@ Zeile 294: / Zeile 300: @@
 row in set (0.01 sec)
 </code>
-</del>
 ==Create User via EasyHP Admin GUI==
-Log in to:[[f11:technik:raspberrypi:hotspotdm3kb:rasp1logeasyhp|EASY-Hotspot Admin GUI]] and create a Post-Payed User
+Log in to:[[f11:technik:raspberrypi:hotspotdm3kb:rasp1logeasyhp|EASY-Hotspot Admin GUI]] and create a (Post-Payed) User
 for the first tests.
-==Check / Change Freeradius shared secret ==
+==Check / Change Freeradius shared secret==
 Default is "testing123"
 In case of using a different secret change password, as we have configured above of radius user in mysql, change secret in Free-Radius config.
@@ Zeile 343: / Zeile 350: @@
 </code>
+If you see the reply from Radius that an Access-Accept packet is received the Radius is operational.
@@ Zeile 349: / Zeile 356: @@
-Additional: Only if something went wrong and a restart is necessary: Drop DB and User:
+**Additional:** Only if something went wrong and a restart is necessary: Drop DB and User:
 <code>
@@ Zeile 368: / Zeile 375: @@
 </code>
-===Start RADIUS in debug mode:===
-<code>
-freeradius -X
-</code>
-Dont panic, tons of output will run over the screen, but important is that after some time \\
-a line named: **Ready to process requests.** is displayed\\
-Now login on another terminal and test radius communication with MySQL by requesting login-Infor for user1 with pw passwd123 on localhost 1812 and secret RaspiRadi1234:
-<code>
-root@raspberrypi:~# radtest user1 passwd123 localhost 0 RaspiRadi1234
-Sending Access-Request of id 35 to 127.0.0.1 port 1812
-	User-Name = "user1"
-	User-Password = "passwd123"
-	NAS-IP-Address = 127.0.1.1
-	NAS-Port = 0
-	Message-Authenticator = 0x00000000000000000000000000000000
-rad_recv: Access-Accept packet from host 127.0.0.1 port 1812, id=35, length=20
-root@raspberrypi:~#
 </code>