How to authenticate Oracle Linux with Fortiauthenticator

 How to authenticate Oracle Linux with Fortiauthenticator

Content Of Working

_________________________________________________________________________________

1. Config pam radius on fortiauthenticator

2. Install package (pam_radius) on client linux

3. Config pam_radius on client linux

4. Create user

__________________________________________________________________________________

1. Config pam radius on fortiauthenticator

    For adding author host

        Authentication -> RADIUS Service -> Clients -> Create New

2. Install package (pam_radius) on client linux

    Authentication -> RADIUS Service -> Policies -> Create New 

            1. Choose clients that create above

3. Config pam_radius on client linux

yum install pam_radius

vi /etc/pam_radius.conf

vi /etc/pam.d/sshd

#%PAM-1.0

auth [success=1 default=ignore] /usr/lib64/security/pam_unix.so

auth       required     /usr/lib64/security/pam_radius_auth.so

auth       sufficient    /usr/lib64/security/pam_radius_auth.so

auth       substack     password-auth

vi /etc/ssh/sshd_config

sudo systemctl restart sshd

4. Create user

Add user. the same username in FortiAuthenticator.

Add username under group ROOT

visudo