# ⁣⁣RADIUS authentication for admin users

This is an example to help you to set up the RADIUS authentication (CentOS+FreeRADIUS) for admin users on **Evolution** devices.

**Step 1**&#x20;

Add the **Evolution** client devices you want to authenticate at FreeRADIUS server to */etc/raddb/clients.conf*.

```
// client MASTER{
              ipaddr=1.1.10.1
              secret=pass
			 }
```

<figure><img src="/files/TIHbloveHLOY96ZImmm8" alt=""><figcaption></figcaption></figure>

{% hint style="warning" %}
**NOTE**

*/etc/raddb/clients.conf* contains a list of devices that can query the FreeRADIUS server for AAA requests.
{% endhint %}

**Step 2**&#x20;

Add users to */etc/raddb/users*.

```
// login Cleartext-Password:="password"
```

* "*login*" - any user login
* "*password*" - any user password.

<figure><img src="/files/BgA14Abv5Q8DX38w2kzi" alt=""><figcaption></figcaption></figure>

**Step 3**

Set up your devices:

* Set up local login and password (you can choose any login and password you like).

```
// sys user login
sys password pass
```

* Enable AAA authentication.

```
// sys useAAA
```

* Specify IP-address and password. Use actual address of your RADIUS server instead of "*10.10.10.128"*.
* Instead of "*pass"* use actual password you have specified on step 1.

```
// aaa -auth=10.10.10.128,pass start
```

* Save configuration.

```
// co sa
```

**Step 4**&#x20;

Make sure your **Evolution** devices and RADIUS server have full IP connectivity (devices can ping RADIUS server address and vice versa) and no firewalls are enabled between RADIUS server and **Evolution** devices.\
We also recommend disabling FreeRADIUS server firewall.

```
// sudo systemctl stop firewalld
```

**Step 5**

Start FreeRADIUS server in debug mode.

```
// sudo radiusd –X
```

**Step 6**

Try to login to **Evolution** device via Web interface or Telnet using login and password you have specified on step 2. If configuration is correct you will be able to access the device management and see the FreeRADIUS server output similar to the following:

<figure><img src="/files/aAkGJCK03v7lTgOUejGu" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://wiki.astrawireless.net/astra-wireless-documentation/white-papers/radius-authentication-for-admin-users.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.