Pfsense + FreeRadius: Force authentication?


  • Hi,

    How can you configure FreeRadius on pfSense such that it is a requirement to have valid Radius authentication in order to pass the firewall?

    I.e. no traffic should pass on the network without valid credentials.

    Regards,
    Rob.

  • Rebel Alliance Developer Netgate

    You can't do that directly, but if you setup Captive Portal with RADIUS auth backend, that gets you closer.

    Or if your switch / AP / layer 2 supports 802.1x you can do that before it ever reaches the firewall.


  • Hi,

    Thanks, my switches do support RADIUS, so I will see about switching that on.

    I was kind of expecting that pfSense would have the same kind of support for enabling RADIUS for any connectivity to it, maybe that was an incorrect assumption.

    Regards,
    Rob.