Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Authentication with radius

    Scheduled Pinned Locked Moved Captive Portal
    2 Posts 2 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      tenso
      last edited by

      hello
      the configuration file clients.conf radius we have the following syntax
      Customer host.domainname
      (
      secret = motdepasseradius
      shortname alias =
      nastype = Other
      )
      in this file are given addresses of access points that have the right to access the radius server for authentication
      but what these attributes  secret shortname and nastype represent ?

      my access points can not access to the RADIUS server
      What should I change on the client file. conf
      thank

      1 Reply Last reply Reply Quote 0
      • S
        ssbaksa
        last edited by

        @tenso:

        hello
        the configuration file clients.conf radius we have the following syntax
        Customer host.domainname
        (
        secret = motdepasseradius
        shortname alias =
        nastype = Other
        )
        in this file are given addresses of access points that have the right to access the radius server for authentication
        but what these attributes  secret shortname and nastype represent ?

        my access points can not access to the RADIUS server
        What should I change on the client file. conf
        thank

        Ok. It goes like this:

        client 192.168.15.254 {
                secret          = yoursharedsecret
                shortname      = Hotel-California
        }

        First word is client and it is your access unit/server/AP/whatever. It is not customer, it is hard-coded and all radius servers have it.
        You can use host name but, please, don't. Use IP address.

        Brackets are curly - no other can be used (for freeradius) I don't have other radius server here so I can't check them now.

        Secret is a secret word (not known/shared/whatever to other people/systems) shared only between your client access unit/server/AP/whatever. Yes, you can use the same one for all your systems.

        Shortname is, well, shortname. Name your client as you wish.

        nastype=other is OK.

        Is that enough for get you started?

        Please read HOWTO's but feel free to ask.

        Sasa

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.