OpenBSD manual page server

Manual Page Search Parameters
RADIUSCTL(8) System Manager's Manual RADIUSCTL(8)

radiusctlcontrol the RADIUS protocol daemon

radiusctl command [argument ...]

The radiusctl utility controls the radiusd(8) daemon.

The following commands are available:

hostname radius_secret user_name [options]
Sends a RADIUS authentication request packet and shows the result. The request is for the user specified by user_name and sent to the RADIUS server specified by hostname. radius_secret is the shared secret with the server. The options are as follows:
seconds
Specifies how many seconds to wait before resending a packet. The default is 2.
seconds
Specifies the maximum amount of time to wait for a valid reply packet. The default is 8.
method
Use method for authentication. It can be either pap, chap, or mschapv2. If this option is omitted, pap is used.
nas-port
Specify an integer value for the NAS-Port attribute in the packet. If this option is omitted, 0 is used.
password
Use password for user_name.
port
Use port when sending a packet to hostname. If the port is omitted, the default port number 1812 is used.
number
Specifies the number of packets to try sending. The default is 3.
yes | no
Specifies if Message-Authenticator is given for the access request packet. The default is yes.
Show all ipcp sessions in the database of radiusd_ipcp(8) briefly.
[-json]
Dump all ipcp sessions in the database of radiusd_ipcp(8). When -json is specified, radiusctl shows the sessions in JSON format.
[-json]
Monitor the database of radiusd_ipcp(8), show newly created sessions and deleted sessions. When -json is specified, radiusctl shows the sessions in JSON format.
sequence
Request to disconnect the session specified by the sequence.
sequence
Request to delete the session specified by the sequence without requesting disconnection.

(show all sessions)
$ doas radiusctl ipcp show
Seq Assigned        Username               Start    Tunnel From
--- --------------- ---------------------- -------- -------------------------
 21 192.168.1.99    mifune@example.jp      11:35AM  203.0.113.32:34859
 22 192.168.1.103   nakadai@example.jp     11:56AM  192.0.2.4:61794
$

(disconnect Nakadai's session)
$ doas radiusctl ipcp disconnect 22
$

radiusd(8), radiusd_ipcp(8)

September 15, 2024 OpenBSD-current