Enabling RADIUS as authentication server spams NPS every second
-
I've set up RADIUS to my Microsoft NPS instance, and have noticed pfsense immediately starts spamming it with authentication requests for the local admin user even when no actual authentication attempts are occurring. Is this expected?
-
No, I would not expect that. What are you doing at the time? Is there anything logged in pfSense?
-
@stephenw10 To test it just now, I re-enabled RADIUS server as the Authentication server then logged out of the WebUI. I still saw the NPS instance being flooded with requests from pfSense. Changing the authentication server back to Local Database immediately stops the requests
-
@jackyaz said in Enabling RADIUS as authentication server spams NPS every second:
@stephenw10 To test it just now, I re-enabled RADIUS server as the Authentication server then logged out of the WebUI. I still saw the NPS instance being flooded with requests from pfSense. Changing the authentication server back to Local Database immediately stops the requests
Ah, I realised I'd recently set up HomeAssistant to integrate with pfSense...disabling the integration stopped the requests. Since the HA integration grabs so many metrics, I wonder if its sending an auth attempt for every single one
Linking in case useful to anyone else https://github.com/travisghansen/hass-pfsense/issues/71
-
Ah, if it's using an xml-rpc call for each metric I guess that would do it. Interesting.
-
@stephenw10 I don't know enough about the integration (I haven't had time to read through the code), but I have seen xml-rpc mentioned
