Questions tagged [radius]

Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for computers to connect and use a network service.

RADIUS is a client/server protocol that runs in the application layer, using UDP as transport. The Remote Access Server, the Virtual Private Network server, the Network switch with port-based authentication, and the Network Access Server (NAS), are all gateways that control access to the network, and all have a RADIUS client component that communicates with the RADIUS server. The RADIUS server is usually a background process running on a UNIX or Microsoft Windows server.[3] RADIUS serves three functions:

to authenticate users or devices before granting them access to a network
to authorize those users or devices for certain network services and
to account for usage of those services.

Source: wikipedia

355 questions

vote

1 answer

dynamic VLANs on cheap Access Point after switch

I set up 802.1x on the wifi and now I want to configure dynamic vlan. Only problem: the AP (TP-Link Archer C7 v2 w/stock firmware) doesn't support vlans. Let me be a bit more visual: a network diagram. The important part here is: client -> wireless…

wifi radius dynamic-vlan-assignment

asked Mar 09 '16 at 17:27

Frank Vermeulen

vote

1 answer

Local credentials used when radius server is available sshd pam_radius

I have pam_radius setup and it works (centos6, pam_radius: 1.4.0-2.el6), i can authenticate via the radius server using ssh. What i am trying to accomplish is that when the radius server is unavailable to fall back to a local account. The two…

centos ssh authentication pam radius

asked Mar 08 '16 at 09:18

Thijn

vote

0 answers

Radius server not responding to EAP requests

We are trying to setup a wifi environment using WPA2 security using Radius server and AD authentication. We've set up the radius server using the following…

windows-server-2008 active-directory wifi radius nps

asked Feb 13 '16 at 16:31

Chachu

vote

1 answer

WIFi Authentication with Windows Active Directory

What would you recommend for scenario. Office with 100 employees multiple device platforms(Apple , Windows and Android). Existing Windows Active Directory on Windows 2008 but not all devices use this to authenticate (Personal Laptops , guests and…

windows-server-2008 active-directory wifi radius 802.1

asked Jan 29 '16 at 00:23

Jonathan Kellermann

vote

0 answers

Use mail attribute for 802.1x RADIUS authenticatioon with Microsoft NPS

We have run a Cisco WiFi network that uses 802.1x to authentication logins against Active Directory. Employees login using their UPN prefix, and all works well. For various reasons we'd like users to be able to log in with their email address…

cisco authentication wifi radius nps

asked Dec 17 '15 at 00:44

Michael Shimmins

vote

1 answer

HAProxy and Radius

I've a following situation: network1 - gate - network2 network2 has several services. network1 has a lot of developers. I need to make access from developers to services with separated access, for example: dev1 should have access to debug ports…

haproxy radius

asked Dec 03 '15 at 14:38

alterpub

vote

0 answers

local user cannot login while RADIUS is configured on Cisco Switch 3745

I've configured RADIUS on my switch as below: aaa new-model ! aaa authentication login default group radius local aaa authorization exec default group radius local ! radius-server host 172.16.1.20 auth-port 1812 acct-port 1813 radius-server…

radius

asked Nov 09 '15 at 19:53

Mehran

vote

1 answer

SSH Authentication using RADIUS + Google Authenticator

I'm trying configure my SSHD's to authenticate users using FreeRadius. The FreeRadius server needs to first require a valid OTP using Google Authenticator, and then verify the system account password. I can get things working if I set the Radius…

pam radius google-authenticator

asked Oct 07 '15 at 14:16

noderunner

vote

1 answer

NPS/RAIDUS Authentication for Wifi and certificates for non trusted server

I'm trying to setup an NPS server as RADIUS server for Wifi network of employers of my company. All mobile devices could connect to this networks using their domain user/pass. My problem is to let Windows computer (not in domain!) use this network,…

ssl ssl-certificate wifi radius nps

asked Sep 28 '15 at 07:48

Tobia

1,272
9
41
81

vote

2 answers

Radius clients with different authentication criteria

I can't seem to find a good tutorial on how to set my network policy for one of my radius clients. I'd like my radclientA with policyA to authenticate and radclientB with policyB to authenticate. It seems though that if I have a policy in place,…

windows-server-2012 radius nps aaa

asked Aug 10 '15 at 09:48

normarth

vote

0 answers

Server 2012 NPS Server not authenticating IKEv2 requests

I am having a weird problem regarding NPS Server when I upgraded my vpn servers from server 2008 R2 to Server 2012 R2. Actually in my infrasturcture I have a Windows 2008 R2 based AD and in its domain I have an NPS server joined as member server.…

windows-server-2008-r2 vpn windows-server-2012-r2 radius nps

asked Aug 06 '15 at 10:58

Frank

vote

0 answers

Network Policy not evaluated for forwarded authentications

I'm having a problem with NPS connection policies in combination with forwarded RADIUS requests - the connection policy does not seem to be evaluated? Our domain has several one-way trusts. I have a network policy stating that only members of a…

active-directory radius nps

asked Aug 05 '15 at 08:48

carlpett

vote

0 answers

Same VLAN for LAN only and Internet users on 802.1x network with pfSense as gateway

I am creating an ISP for a student residence. The LAN is already there and working, with several CISCO switches. I want to provide Internet by a secured and automatic way to those who pay for it (monthly). In short future, there also might be an…

pfsense isp radius 802.1 freeradius

asked Jul 07 '15 at 20:49

qschulz

vote

0 answers

Using airport extreme as an AP with true bridge mode (forwarding 802.1x auth)

So here is my setup. I have a Router (Fortigate) 4 airport Extreme, and a radius/ldap server on a distant server. I want my user to authenticate with the radius or LDAP server, and be able to create specific policy for each person on the…

ldap radius 802.1 fortigate

asked Jun 10 '15 at 08:56

Xarouma

vote

1 answer

mod_auth_radius secure over https?

mod_auth_radius README file says: Using static passwords & RADIUS authentication over the web is a BAD IDEA. Everyone can sniff the passwords, as they're sent over the net in the clear. If I serve the page over https, will it be secure then? Or…

apache-2.2 radius freeradius mod-auth

asked May 01 '15 at 12:34

Karel

Prev 1 2 3

…

23 24 Next