Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    FreeRADIUS

    Scheduled Pinned Locked Moved
    pfSense Packages
    1
    2
    161
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • P
      peterlecki
      last edited by

      I configured FreeRADIUS to do 2FA, as per
      https://www.netgate.com/blog/freeradius-on-pfsense-for-2fa

      I added Class := "admins" into Reply-Item Attribute as per
      https://docs.netgate.com/pfsense/en/latest/usermanager/radius.html

      Testing via Diagnostics > Authentication works
      User admin2fa authenticated successfully. This user is a member of groups: -all -admins
      Before adding the Class attribute, it was empty after "groups:"

      BUT when actually logging into the WebUI, I get Username or Password incorrect and the System > General log shows
      2ce60b27-0451-45ee-8519-35023c40c80a-image.png
      preventing further logins for 8 minutes.

      So it test Authenticates successfully but actual logins are seen as an attack.

      1 Reply Last reply Reply Quote 0
      • P
        peterlecki
        last edited by

        The screenshot I posted above got removed somehow so I'm posting in text

        sshguard	14637	Blocking "192.168.4.103/32" for 480 secs (1 attacks in 0 secs, after 3 abuses over 693 secs.)
        1 Reply Last reply Reply Quote 0
        • First post
          Last post