Solved: Radius Authentication on VMSS

Laurence_Curlin · ‎2021-04-20

Hi

I have an issue where I am trying to configure Radius auth to the firewalls that will be replicated during a scale out event, is this possible ?

I have considered the possibility of simply adding the clish commands to the autoprov script could this work? any help will be greatly appreciated.

Thank you in advance,

AyGit · ‎2021-04-20

Hi,

Try this:

create a script in the SMS --> vi $FWDIR/conf/autoscaling-new-instance.sh
add the line below in the shell script:
#! /bin/bash
clish -c 'add aaa radius servers priority 1 host <@IP> port 1812 secret timout 30'
clish -c 'add aaa radius servers default-shell /bin/bash'
clish -c 'add aaa radius servers super-user-uid 0'
Assign the execute permission to the shell script --> chmod u+x $FWDIR/conf/autoscaling-new-instance.sh
Configure CME and set the relevant template to use this script --> autoprov_cfg set template –tn <CONFIGURATION-TEMPLATE-NAME> –cg $FWDIR/conf/autoscaling-new-instance.sh

You can add other command in the script for automation purpose.

Regards

AyGit · ‎2021-04-20

Hi,

Try this:

create a script in the SMS --> vi $FWDIR/conf/autoscaling-new-instance.sh
add the line below in the shell script:
#! /bin/bash
clish -c 'add aaa radius servers priority 1 host <@IP> port 1812 secret timout 30'
clish -c 'add aaa radius servers default-shell /bin/bash'
clish -c 'add aaa radius servers super-user-uid 0'
Assign the execute permission to the shell script --> chmod u+x $FWDIR/conf/autoscaling-new-instance.sh
Configure CME and set the relevant template to use this script --> autoprov_cfg set template –tn <CONFIGURATION-TEMPLATE-NAME> –cg $FWDIR/conf/autoscaling-new-instance.sh

You can add other command in the script for automation purpose.

Regards

Laurence_Curlin · ‎2021-04-20

Absolutely awesome, thank you very much for that information, I have been searching for ages for clear concise instructions like that.

Radius Authentication on VMSS