EasyManua.ls Logo

GE M60 UR Series

GE M60 UR Series
662 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
GE Multilin M60 Motor Protection System G-1
APPENDIX G G.1 RADIUS SERVER CONFIGURATION
G
APPENDIX G RADIUS SERVERG.1 RADIUS SERVER CONFIGURATION G.1.1 RADIUS SERVER CONFIGURATION
The following procedure is an example of how to set up a simple RADIUS server, where the third-party tool used is also an
example.
1. Download and install FreeRADIUS
as the RADIUS server.
2. In the RADIUSD.CONF file, locate the "bind_address" field and enter your RADIUS server IP address.
3. In the USERS.CONF file in the <Path_to_Radius>\etc\raddb folder, add the following text to configure a user "Tester"
with an Administrator role.
Tester:
->User-Password == "Testing1!1"
->GE-UR-Role = Administrator
4. In the CLIENTS.CONF file in the <Path_to_Radius>\etc\raddb folder, add the following text to define a RADIUS client,
where the client IP address is 10.0.0.2, the subnet mask is 255.255.255.0, the shared secret specified here is also
configured on the UR device for successful authentication, and the shortname is a short, optional alias that can be
used in place of the IP address.
client 10.0.0.2/24 {
secret = testing123
shortname = private-network-1
}
5. In the <Path_to_Radius>\etc\raddb folder, create a file called dictionary.ge and add the following content.
# ##########################################################
# GE VSAs
############################################################
VENDOR GE 2910
# Management authorization
BEGIN-VENDOR GE
# Role ID
ATTRIBUTE GE-UR-Role 1 integer
# GE-UR-ROLE values
VALUE GE-UR-Role Administrator 1
VALUE GE-UR-Role Supervisor 2
VALUE GE-UR-Role Engineer 3
VALUE GE-UR-Role Operator 4
VALUE GE-UR-Role Observer 5
END-VENDOR GE
#############################################################
6. In the dictionary file in the <Path_to_Radius>\etc\raddb folder, add the following line.
$INCLUDE dictionary.ge
7. For the first start, run the RADIUS server in debug mode by entering
<Path_to_Radius>/start_radiusd_debug.bat
8. Set up the RADIUS client on the UR as follows. Access Device > Settings > Product Setup > Security. Configure the
IP address and ports for the RADIUS server. Leave the GE vendor ID field at the default of 2910. Update the RADIUS
shared secret as specified in the CLIENTS.CONF file.

Table of Contents

Related product manuals