From 61aa3696bb0179a8296e4f389f34ffc31424dbf1 Mon Sep 17 00:00:00 2001

From: Nikolai Kondrashov <Nikolai.Kondrashov@redhat.com>

Date: Mon, 8 Sep 2014 12:32:13 +0300

Subject: [PATCH 1/1] Adjust configuration to fit Red Hat specifics

---

 raddb/mods-available/eap | 4 ++--

 raddb/radiusd.conf.in    | 7 +++----

 2 files changed, 5 insertions(+), 6 deletions(-)

diff --git a/raddb/mods-available/eap b/raddb/mods-available/eap

index 6938171..95ef666 100644

--- a/raddb/mods-available/eap

+++ b/raddb/mods-available/eap

@@ -430,7 +430,7 @@ eap {

 			#

 			#  You should also delete all of the files

 			#  in the directory when the server starts.

-	#		tmpdir = /tmp/radiusd

+	#		tmpdir = /var/run/radiusd/tmp

 			#  The command used to verify the client cert.

 			#  We recommend using the OpenSSL command-line

@@ -444,7 +444,7 @@ eap {

 			#  in PEM format.  This file is automatically

 			#  deleted by the server when the command

 			#  returns.

-	#		client = "/path/to/openssl verify -CApath ${..ca_path} %{TLS-Client-Cert-Filename}"

+	#		client = "/usr/bin/openssl verify -CApath ${..ca_path} %{TLS-Client-Cert-Filename}"

 		}

 		#

diff --git a/raddb/radiusd.conf.in b/raddb/radiusd.conf.in

index 307ae10..7cf71be 100644

--- a/raddb/radiusd.conf.in

+++ b/raddb/radiusd.conf.in

@@ -70,8 +70,7 @@ certdir = ${confdir}/certs

 cadir   = ${confdir}/certs

 run_dir = ${localstatedir}/run/${name}

-# Should likely be ${localstatedir}/lib/radiusd

-db_dir = ${raddbdir}

+db_dir = ${localstatedir}/lib/radiusd

 #

 # libdir: Where to find the rlm_* modules.

@@ -415,8 +414,8 @@ security {

 	#  member.  This can allow for some finer-grained access

 	#  controls.

 	#

-#	user = radius

-#	group = radius

+	user = radiusd

+	group = radiusd

 	#  Core dumps are a bad thing.  This should only be set to

 	#  'yes' if you're debugging a problem with the server.

-- 

2.1.0