RADIUS menus allow a user to select different login options after being authenticated. For a user with several different account types, menus allow the user to select different options without re-connecting.
RADIUS menus are implemented as text files located in the /etc/raddb/menus directory on the RADIUS server. The number of menu files under the menus directory is unlimited. Menu files contain the menu and end keywords to indicate the start and end of the text displayed to the user. Text between the menu and end keywords can be any printable ASCII characters. The text in the menu file is case-sensitive.
A menu file can accommodate up to 2000 bytes of data. A menu can refer to other menus or may be a single-level menu.
A menu may be referenced by any user entry in the users file, including the DEFAULT entry. The Menu reply item is the only reply item in the user entry when a menu is referenced.
DEFAULT Auth-Type = System Menu = "menu1"
Using the above example, after user bob is authenticated, the menu1 menu is displayed and he is prompted to make a selection. When bob selects a menu option, the corresponding service is provided.
The menu filename must be created under the /etc/raddb/menus directory of the RADIUS server. Menu names can be up to 120 alphanumeric printable ASCII characters and must be enclosed in double quotes (" ").
A single-level menu does not reference other menus. An example is displayed below; this menu would be /etc/raddb/menus/menu1.
menu *** Welcome to EDU OnLine *** Please select an option: 1. Start CSLIP session 2. Start PPP Session 3. Quit Option: end 1 Service-Type = Framed-User, Framed-Protocol = SLIP, Framed-IP-Address = 255.255.255.254, Framed-Routing = None, Framed-MTU = 1006, Termination-Menu = "menu1" # 2 Service-Type = Framed-User, Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-Routing = None, Termination-Menu = "menu1" # 3 Menu = "EXIT" # DEFAULT Menu = "menu1"
In this example, after RADIUS authenticates the user, menu1 is displayed and the user is prompted to select a service from this menu. Once the user has finished the SLIP or PPP session, the termination menu is displayed and the user is prompted to select a new service. If a Termination-Menu is not included in the reply items, the user is disconnected immediately after the SLIP or PPP session.
Nested menus refer to other menus. In the example below, the menu has an other option; if a user chooses this option, a second menu is displayed.
menu *** Welcome to the Internet Service *** Please enter an option: ppp - Start PPP session telnet - Begin login session with a host other - Display a second menu Option: end ppp Service-Type = Framed-User Framed-Protocol = PPP, Framed-IP-Address = 255.255.255.254, Framed-Routing = None, Framed-MTU = 1500 # telnet Service-Type = Login-User, Login-IP-Host = 172.16.1.81, Login-Service = Telnet, Login-TCP-Port = 23 # other Menu = "menu3" # DEFAULT Menu = "menu2"
/ Prev / Next / TOC / Preface / Overview / Server / Client / User / Menu / SecurID / Accounting / Troubleshooting /