Setting RADIUS cache and server timeout options

By default, the RADIUS cache and RADIUS server timeout options are configured as follows:

  • The RADIUS cache is configured to store 1,000 entries and each entry is considered fresh for 60 minutes.
  • Content Gateway can try to re-establish a connection to the RADIUS server if the connection remains idle for 10 seconds and can retry the connection a maximum of 10 times.

Change these default values by editing the records.config file.

Steps

  1. Open the records.config file located in /opt/WCG/config.
  2. Edit the following variables:
    Variable Description
    proxy.config.radius.auth. min_timeout Specify the amount of time in seconds that the Content Gateway connection to the RADIUS server remains idle before Content Gateway closes the connection.
    proxy.config.radius.auth. max_retries Specify the maximum number of times Content Gateway tries to connect to the RADIUS server.
    proxy.config.radius.cache.size

    Specify the number of entries allowed in the RADIUS cache.

    The minimum value is 256 entries. If you enter a value lower than 256, Content Gateway signals a SEGV.

    proxy.config.radius.auth.ttl_value Specify the number of minutes that Content Gateway can store username and password entries in the RADIUS cache.
    proxy.config.radius.cache. storage_size

    Specify the maximum amount of space that the RADIUS cache can occupy on disk.

    This value must be at least 100 times the number of entries. It is recommended that you provide the maximum amount of disk space possible.

  3. Save and close the file.
  4. From the Content Gateway bin directory (/opt/WCG/bin), run content_line -L to restart Content Gateway on the local node or content_line -M to restart WCG on all the nodes in a cluster.