Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FreeRadius 3 authentication problem on pfsense 2.4.4

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 2 Posters 385 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nfern
      last edited by

      I am currently using Freeradius3 on netgate XG7100 device running a software version 2.4.4 p2.
      i am trying to authenticate my juniper switch using radius login authentication. As per juniper support, radius server configuration on the switch is fine. I can see the switch requesting for access on Pfsense box ( in packet capture ), but do not see any reply going back to the switch to grant access. I am attaching the packet capture if this helps.

      14:29:35.122385 f8:b1:56:36:0c:15 > 00:08:a2:0e:da:3d, ethertype IPv4 (0x0800), length 171: (tos 0x0, ttl 63, id 22814, offset 0, flags [none], proto UDP (17), length 157)
      10.15.1.254.64440 > 10.14.1.196.1812: [udp sum ok] RADIUS, length: 129
      Access-Request (1), id: 0xa4, Authenticator: 4a3ce6b51f039c091ee79474bed4acbc
      User-Name Attribute (1), length: 6, Value: test
      0x0000: 7465 7374
      Vendor-Specific Attribute (26), length: 24, Value: Vendor: Microsoft (311)
      Vendor Attribute: 11, Length: 16, Value: ...W..1e..38...T
      0x0000: 0000 0137 0b12 b3d4 0057 8fe2 3165 dfbf
      0x0010: 3338 de10 de54
      Vendor-Specific Attribute (26), length: 58, Value: Vendor: Microsoft (311)
      Vendor Attribute: 25, Length: 50, Value: ..*..ZN.l?sd/$~5.........._J...:J.i...|Ra......D..
      0x0000: 0000 0137 1934 a400 2af0 d25a 4ec4 6c3f
      0x0010: 7364 2f24 7e35 b30d 0000 0000 0000 0000
      0x0020: 5f4a 120a 9f3a 4ae0 69bf d482 7c52 6104
      0x0030: 87e7 a9b3 0d44 aadf
      NAS-Identifier Attribute (32), length: 15, Value: A06-WAT-SW01D
      0x0000: 4130 362d 5741 542d 5357 3031 44
      NAS-IP-Address Attribute (4), length: 6, Value: 10.15.2.2
      0x0000: 0a0f 0202

      Can someone help with this configuration on pfsense? Thanks in Advance.

      viktor_gV 1 Reply Last reply Reply Quote 0
      • viktor_gV
        viktor_g Netgate @nfern
        last edited by

        @nfern Please update pfSense to 2.4.5
        and show the FreeRADIUS pages: NAS/Clients, Interfaces

        1 Reply Last reply Reply Quote 0
        • N
          nfern
          last edited by

          Hi,
          I have upgraded to 2.4.5.
          please find screenshots requested below.
          still does not authenticate.

          24c8657b-7bef-4d5e-9656-dddeb6686050-image.png

          58141b71-156b-465b-97d7-71340053b0ec-image.png

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.