pfsense / freeRADIUS

  • Am I correct in saying that under the interface tabs I only need to have 1 interface for Auth and Accounting? Ie , even though I have a device on a different vlan (vlans are set up proper and I am able to ping across the network). I was under the impression all I would have to do is at the device under NAS/Clients.. ie with the proper shared secret. I am trying to use freeRADIUS with my Unifi AC-PRO but it doesn't want to work. I want to rule out it being a pfsense settings before I go and troubleshoot the AP more.


  • Do a radtest to verify its working:-

    root@unifi:~# radtest -4 andy password 1812 ClientSharedSecret
    Sending Access-Request of id 181 to port 1812
    User-Name = "andy"
    User-Password = "password"
    NAS-IP-Address =
    NAS-Port = 1812
    Message-Authenticator = 0x00000000000000000000000000000000
    rad_recv: Access-Accept packet from host port 1812, id=181, length=34
    Class = 0x61646d696e73
    Service-Type = Administrative-User

    You could also do a radsniff -x on pfSense.

Log in to reply