Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    RADIUS group authentication failing

    Scheduled Pinned Locked Moved
    IPsec
    1
    1
    147
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      teverett
      last edited by teverett

      I'm having a problem with RADIUS group authentication

      • I have my RADIUS server returning group information, as confirmed by the menu item "Diagnostics > Authentication".
      • The user "abc" is a member of the group "pfipsec".
      • I can also confirm that the group "pfipsec" exists in pfsense.

      However when I enable group authentication in the mobile clients section and select "pfipsec", I can't connect. The IPSEC log is below. IPSEC connection is failing with:

      Dec 10 12:56:38	charon	95116	04[CFG] <con-mobile|2> selected peer config 'con-mobile' unacceptable: non-matching authentication done
Dec 10 12:56:38	charon	95116	04[CFG] <con-mobile|2> constraint check failed: group membership to 'pfipsec' required

      Have I missed a step?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post