Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [freeradius]

FreeRADIUS is an open source RADIUS server

FreeRADIUS is an open source RADIUS (Remote Authentication Dial-In User Service) server. It implements AAA: Authentication, Authorization, and Accounting. It is very flexible and has many modules. It supports many backend databases such MySQL, PostgreSQL or Redis for retrieving/saving AAA data.

Official website.

261 questions
2
votes
1 answer

Freeradius server is not accepting accounting packets through tcpreplay

I am running a free radius server on system A. I am sending test accounting requests using radclient radclient -x systemA acct testing123 from system B. I can see that the radius server recieved these requests from its debug logs. I had saved these…
woodstok
  • 131
  • 5
2
votes
1 answer

Write hash password to LDAP when creating a new user

I am working on a project with a central user database system. One of the requirements of the system is that there should be only one set of users for all the application. FreeRADIUS and Samba are two my applications that both use LDAP as their…
alibaba
  • 417
  • 1
  • 5
  • 13
2
votes
1 answer

Allowing multiple IP addresses for a single VPN user

Currently for one of the company I am using ASA 5505 as an VPN server with freeradius (mysql module) as an authentication backend. User authenticatin is based on the group password, user password and IP address. My database entries looks like…
golja
  • 1,611
  • 10
  • 14
2
votes
2 answers

Meraki's Accounting-Requests to RADIUS server

I'm running a RADIUS server with some Meraki APs, the process of Authentications is fine... But it seems that the Meraki Cloud Controller is just sending the authentication packets and not the accounting requests. I've tested the RADIUS sending…
PachinSV
  • 193
  • 1
  • 1
  • 9
2
votes
1 answer

FreeRadius is not opening ports

I've just installed freeradius and start it with a /etc/init.d/ startup script. After I run netstat -nat I dont see that any process is listening on ports 1812 and 1813. I'm using Ubuntu 10.04 LTS and default freeradius configuration. I've tried to…
Boban P.
  • 685
  • 1
  • 6
  • 20
2
votes
0 answers

Dynamic VLANs with FreeRadius, OpenLDAP & Cisco WLC

Currently have a FreeRADIUS 1.1.6 server authenticating users from OpenLDAP which are stored in the posixAccount account schema. We've now installed a Cisco WLC, and want to authenticate those users over 802.1X (which is successfully working), but…
petertonoli
  • 613
  • 3
  • 12
2
votes
1 answer

Cannot log into my RADIUS protected wireless connection. Here's the LOG contents

As soon as someone tries to connect to my network, this appears in the log: Tue May 3 15:58:40 2011 : Error: TLS Alert read:fatal:unknown CA Tue May 3 15:58:40 2011 : Error: TLS_accept:failed in SSLv3 read client certificate A Tue May 3…
Only Bolivian Here
  • 147
  • 1
  • 3
  • 8
2
votes
1 answer

Accounting setup in freeradius with mikrotik and the "always" module

I have a freeradius setup that is being used to provide authentication for users on a wireless network. The access points are all Mikrotik hardware and the users are connected 24/7. We've been using Daloradius with mysql and freeradius 2. The boss…
hookenz
  • 14,132
  • 22
  • 86
  • 142
2
votes
0 answers

OpenVPN auth with Freeradius fails with error message: Module is unknown

I have installed an OpenVPN server with Easy-RSA. I generated the certificate and signed it on my CA Server and copied it back to VPN server. I can establish the client-server connection via certificate (without username/password) without any…
Houman
  • 1,325
  • 3
  • 18
  • 30
1
vote
0 answers

How can I enforce cryptobinding on FreeRADIUS?

On NPS, there's a setting "Disconnect clients without cryptobinding", which should force clients to check the security of the comms which, if I understand correctly, will prevent attacks such as Sycophant. Is there an equivalent setting on…
Samthere
  • 111
  • 2
1
vote
0 answers

FreeRADIUS 3, libradcli4 and ppp compatibility

I'm using Freeradius to authenticate VPN clients using PPTP or L2TP/IPSec (xl2tpd) and I want to do an upgrade from Debian 8 to 9 on our servers incl. upgrading version of Freeradius (2 -> 3). Both PPTP and L2TP are using radius.so plugin in their…
Naxos
  • 11
  • 1
1
vote
1 answer

Adding compiled FreeRADIUS to systemd

Working on getting FreeRADIUS up and running and having issues adding to systemd. Running standalone via radiusd -X works expected and all of the custom configurations are intact. Using freetds module to connect to MS SQL backend... During…
Arnydo
  • 13
  • 1
  • 6
1
vote
1 answer

FreeRADIUS can not login with Active Directory user

I install freeradius 3 in debian 9. I can login with user from text file in radius but I want to login with user from Active Directory. First, I install this library. apt install samba winbind krb5-user krb5-config -y Then I config realm like…
user58519
  • 111
  • 2
1
vote
0 answers

FreeRADIUS default vs. inner-tunnel sites and EAP-TLS workflow

I am trying to setup EAP-TLS with FreeRADIUS and an IPA backend. I understand that a typical workflow is to authorize the user against LDAP first and then to authenticate the user using a certificate. Is this workflow typical or correct? I also…
user3814483
  • 183
  • 9
1
vote
1 answer

Suddenly RADIUS authentication is gone on macOS server (TLS session fails)

Suddenly my RADIUS authentication is gone on my MacOS Server running 10.13.6 and Server Version 5.6.1 (17S2109. I already restored the Open Directory Server. $ host name.domain.tld name.domain.tld has address xxx.xxx.xxx.xxx host…
SEJU
  • 111
  • 5
1 2 3
17 18