[PacketFence-users] FreeRadius - Local Authentication

Mon, 19 Jan 2015 03:23:07 -0800 

Hi everybody,
I have installed with success Packetfence on my CentOS 6.5, in out-of-band
mode (with port-security and SNMPv2) and everything works well. My problem
is the authentication source. I'm trying to use FreeRadius with Local
Authentication modifying the Users file under /usr/local/pf/raddb, adding
username and password, like that:

MyUsername Cleartext-Password := " mypassword "
YourUsername Cleartext-Password := " yourpassword "

The result of "radtest dd9999 Abcd1234 localhost:18120 12 testing123" is
"Access-Accept packet from host 127.0.0.1 port 18120, id=232, length=20"
so, from the Administration Guide I suppose FreeRadius works fine.

This is the output from radiusd -X -d /usr/local/pf/raddb:

radiusd: #### Opening IP addresses and Ports ####
listen {
     type = "auth"
     virtual_server = "packetfence"
     ipaddr = 192.168.1.5
     port = 1812
}
listen {
     type = "acct"
     virtual_server = "packetfence"
     ipaddr = 192.168.1.5
     port = 1813
}
listen {
     type = "control"
 listen {
     socket = "/usr/local/pf/var/run/radiusd.sock"
     mode = "rw"
 }
}
listen {
      type = "auth"
      ipaddr = 127.0.0.1
      port = 18120
}
 ... adding new socket proxy address * port 40823
Listening on authentication address 192.168.1.5 port 1812 as server
packetfence
Listening on accounting address 192.168.1.5 port 1813 as server packetfence
Listening on command file /usr/local/pf/var/run/radiusd.sock
Listening on authentication address 127.0.0.1 port 18120 as server
inner-tunnel
Listening on proxy address 192.168.1.5 port 1814
Ready to process requests.


But the authentication fails when I try to authenticate in the captive
portal with the MyUsername and mypassword credentials.

What's wrong? Do I have to implement 802.1x on all switches?

Thanks you a lot in advance,

Best Regards


Rosario Ippolito

------------------------------------------------------------------------------
New Year. New Location. New Benefits. New Data Center in Ashburn, VA.
GigeNET is offering a free month of service with a new server in Ashburn.
Choose from 2 high performing configs, both with 100TB of bandwidth.
Higher redundancy.Lower latency.Increased capacity.Completely compliant.
http://p.sf.net/sfu/gigenet
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to