User Manager/RouterOS user Example: Difference between revisions

From MikroTik Wiki
Jump to navigation Jump to search
SergejsB (talk | contribs)
No edit summary
 
SergejsB (talk | contribs)
mNo edit summary
Line 8: Line 8:
   / user aaa set use-radius=yes
   / user aaa set use-radius=yes


* Note, '/user aaa' has 'default-group' option, that define type of the default group. Default is read permissions, if you need to allow full permissions for users stored in User Manager database
* '/user aaa' has 'default-group' option, that define type of the default group. Default is read permissions, if you need to allow full permissions for users stored in User Manager database


   / user aaa set default-group=full
   / user aaa set default-group=full

Revision as of 20:31, 1 November 2006

Introduction

User Manager server might be used as remote storage of RouterOS login and password information. MikroTik router will consult User Manager for login and password, when you are accessing RouterOS via Winbox or console session. Let's consider configuration steps.

RouterOS configuration

  • Set RouterOS to use User Manager server for checking login and password information,
 / user aaa set use-radius=yes
  • '/user aaa' has 'default-group' option, that define type of the default group. Default is read permissions, if you need to allow full permissions for users stored in User Manager database
 / user aaa set default-group=full
  • Add radius client to consult User Manager for login service.
/ radius add service=login address=y.y.y.y secret=123456

'secret' is equal to User Manager router secret. 'y.y.y.y' is the User Manager router address.

  • Note, first local router database is consulted, then User Manager database.