11 A copy of the License is available at |
11 A copy of the License is available at |
12 http://www.opensolaris.org/os/community/documentation/license. |
12 http://www.opensolaris.org/os/community/documentation/license. |
13 |
13 |
14 PDL HEADER END |
14 PDL HEADER END |
15 |
15 |
16 Copyright (c) 2010, 2011, Oracle and/or its affiliates. All rights reserved. |
16 Copyright (c) 2010, 2012, Oracle and/or its affiliates. All rights reserved. |
17 --> |
17 --> |
18 |
18 |
19 <refentry id="man.rad"> |
19 <refentry id="man.rad"> |
20 <refentryinfo> |
20 <refentryinfo> |
21 <date>July 7, 2011</date> |
21 <date>July 7, 2011</date> |
494 key. |
494 key. |
495 </para></listitem> |
495 </para></listitem> |
496 </varlistentry> |
496 </varlistentry> |
497 |
497 |
498 <varlistentry> |
498 <varlistentry> |
499 <term>/var/run/radsocket</term> |
499 <term>/system/volatile/rad/radsocket</term> |
500 <listitem><para> |
500 <listitem><para> |
501 The AF_UNIX socket where the local rad instance |
501 The AF_UNIX socket where the local rad instance |
502 (<uri>svc:/system/rad:local</uri>) accepts connections |
502 (<uri>svc:/system/rad:local</uri>) accepts connections |
503 that are implicitly authenticated with <citerefentry> |
503 that are implicitly authenticated with <citerefentry> |
504 <refentrytitle>getpeerucred</refentrytitle> |
504 <refentrytitle>getpeerucred</refentrytitle> |
505 <manvolnum>3C</manvolnum> </citerefentry>. |
505 <manvolnum>3C</manvolnum> </citerefentry>. |
506 </para></listitem> |
506 </para></listitem> |
507 </varlistentry> |
507 </varlistentry> |
508 <varlistentry> |
508 <varlistentry> |
509 <term>/var/run/radsocket-unauth</term> |
509 <term>/system/volatile/rad/radsocket-unauth</term> |
510 <listitem><para> |
510 <listitem><para> |
511 The AF_UNIX socket where the local rad instance |
511 The AF_UNIX socket where the local rad instance |
512 (<uri>svc:/system/rad:local</uri>) accepts connections |
512 (<uri>svc:/system/rad:local</uri>) accepts connections |
513 that must explicitly authenticate using <citerefentry> |
513 that must explicitly authenticate using <citerefentry> |
514 <refentrytitle>pam</refentrytitle> |
514 <refentrytitle>pam</refentrytitle> |
599 |
599 |
600 <refsection><title>Notes</title> |
600 <refsection><title>Notes</title> |
601 <para> |
601 <para> |
602 Two instances of rad are delivered by the system. |
602 Two instances of rad are delivered by the system. |
603 <uri>svc:/system/rad:local</uri> listens to AF_UNIX |
603 <uri>svc:/system/rad:local</uri> listens to AF_UNIX |
604 connections at the paths /var/run/radsocket and |
604 connections at the paths /system/volatile/rad/radsocket and |
605 /var/run/radsocket-unauth, and is enabled by default. The |
605 /system/volatile/rad/radsocket-unauth, and is enabled by |
606 former AF_UNIX socket will automatically authenticate the |
606 default. The former AF_UNIX socket will automatically |
607 connecting process using <citerefentry> |
607 authenticate the connecting process using <citerefentry> |
608 <refentrytitle>getpeerucred</refentrytitle> |
608 <refentrytitle>getpeerucred</refentrytitle> |
609 <manvolnum>3C</manvolnum> </citerefentry>, while the latter |
609 <manvolnum>3C</manvolnum> </citerefentry>, while the latter |
610 requires the connecting process to explicitly |
610 requires the connecting process to explicitly |
611 authenticate. <uri>svc:/system/rad:remote</uri> listens to |
611 authenticate. <uri>svc:/system/rad:remote</uri> listens to |
612 TLS connections on the port 12302, requires all clients |
612 TLS connections on the port 12302, requires all clients |