Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [freeradius]

FreeRADIUS is an open source RADIUS server

FreeRADIUS is an open source RADIUS (Remote Authentication Dial-In User Service) server. It implements AAA: Authentication, Authorization, and Accounting. It is very flexible and has many modules. It supports many backend databases such MySQL, PostgreSQL or Redis for retrieving/saving AAA data.

Official website.

261 questions
2
votes
1 answer

FreeRadius + Active Directory + Google Authenticator

I have FreeRadius 3.0.13 installed on CentOS 7.3 which also has SSSD 1.14.0 which is being used to communicate with our Windows 2012 Domain controller. We are able to authenticate using AD via radius. We also have google authenticator installed on…
georgdl
  • 21
  • 1
  • 1
  • 2
2
votes
2 answers

Should a server or a client be able to verify a client/server certificate - intermediate certificate chain with a known root ca?

I am trying to test the following setup: A RADIUS server works with the EAP-TLS protocol. The client and the server have the following certificates: Client Public Key: clientcert_intermediatecert_chain.pem CA-certificate: rootcert.pem Server Public…
Jannis Kappertz
  • 47
  • 7
2
votes
1 answer

FreeRadius, login not working when using mschap

I've been trying to make RADIUS work with Zentyal without success, I've tried logging in with an Android phone and a Windows 10 PC but none of them worked. Joining the domain using LAN works fine, using radtest without mschap works fine too, the…
Elia Perantoni
  • 143
  • 1
  • 7
2
votes
1 answer

Google Authenticator FreeRADIUS

I'm trying to implement google authenticator PAM module in FreeRADIUS on RHEL7. I've loosely followed this guide: http://www.supertechguy.com/help/security/freeradius-google-auth The reason I say loosely is things appear to have changed with the…
Justin Whelan
  • 21
  • 1
  • 3
2
votes
1 answer

Freeradius VLAN assignment with EAP-TLS and WiFi 802.1x

I'm using FreeRadius with a Ubitquiti WiFi AP with 802.1x auth using EAP-TLS (mutual client/server cert based auth). This is working well for static VLANs (i.e. specified on the AP). I'd like to offload the VLAN assignment to Radius so that…
user397220
  • 71
  • 1
  • 6
2
votes
0 answers

rlm_rest : Handling MSCHAP

I'm writing a django based json rest service for use with rlm_rest. FreeRadius will serve both AAA and DHCP. Despite my scripting skill, The DHCP Part is working correctly ... but have problem with the authentication part. My test scenario: Using…
Bino Oetomo
  • 207
  • 3
  • 10
2
votes
1 answer

FreeRadius can't get new openssl version

I just beginning with FreeRadius. I have installed FreeRadius 2.2.9 but when I try to debug with radiusd -X I got this error Refusing to start with libssl version OpenSSL 1.0.1e-fips 11 Feb 2013 (in range 1.0.1 - 1.0.1f). Security advisory…
user3422401
  • 121
  • 2
2
votes
1 answer

Debian Samba share Authentification with RADIUS server

I'm trying to configure Samba (apt-get install samba) to authenticate users using a RADIUS server and i cannot find anything useful. Is it possible ? I tought i could set Samba to use the PAM authentification and then configure PAM to use the RADIUS…
Joshua
  • 121
  • 1
  • 3
2
votes
0 answers

802.1x dynamic vlan assignment not assigning VLAN

I recently dived into 802.1x authentication with dynamic vlan assigment. My current set up contains of: - A client - A SG220 cisco switch (the supplicant) - A freeradius (authenticator) based on an LDAP AD - A fortigate for…
martijn
  • 21
  • 2
2
votes
2 answers

Is there a list of FreeRADIUS specific attributes?

I am using FreeRADIUS 2.1.12 with PostgreSQL for user and client (nas) auth. I'm a bit new to this--I learned what RADIUS was when I was assigned to set this server up a couple of weeks ago--so pardon me if I'm misunderstanding. In the database…
vastlysuperiorman
  • 596
  • 6
  • 17
2
votes
0 answers

FreeRadius Error reading /etc/freeradius/huntgroups

I've configured freeradius to use sql, everything was working fine, I was doing some tests with the users, and suddenly I cannot start the debugger because of this error : rlm_preprocess: Error reading…
AlvaroAV
  • 151
  • 2
  • 11
2
votes
1 answer

FreeRADIUS and Redis Module

I am wanting to use FreeRADIUS with REDIS for authorisation and accounting. I am running FreeRADIUS 3.0.3. I note the rlm_rediswho module, which appears to be used for caching recent accounting records for users. I also note a rlm_redisn module…
mixja
  • 197
  • 2
  • 7
2
votes
1 answer

FreeRADIUS w/ MySQL backend. IP Pool

I have a pool of addresses (172.16.0.0/24) configured on my NAS (Cisco 2921 router) for my IPsec clients. I have various subnet mask length subnetworks used for different user groups. For example I have 172.16.0.64/27 for one department,…
Alex
  • 516
  • 1
  • 7
  • 18
2
votes
1 answer

FreeRadius Server: RadGroupReply attribute for maximum connected users?

I have a FreeRadius server and I'd like to set a limitation for the number of users connected to a specific NAS. My current set up is that every user that connects to a certain NAS is added to the Radius User Group that is attached to that NAS.…
Kix Panganiban
  • 21
  • 2
2
votes
2 answers

Freeradius: Assign Group to User based on Nas-IP-Address

I wonder if anyone can help me. The goal is to assign different users different ip address based on the AP they connect to. I cannot statically set this as users will travel and end up connecting via a different ap. So i wanted to do a check to see…
Rob
  • 93
  • 1
  • 2
  • 12
1 2
3
17 18