how to configure FreeRADIUS to proxy the PAP reque

2019-07-20 01:40发布

how can I configure FreeRADIUS to proxy the PAP request inside an EAP-TTLS tunnel? Client sends a EAP-TTLS with PAP as inner protocol to freeradius server. I want to proxy the PAP request to another RADIUS server which understands only PAP. How could I configire freeradius for this.

标签： freeradius

2条回答

我欲成王，谁敢阻挡

2楼-- · 2019-07-20 02:11

Just putting the solution steps in case someone needs it.

Add realm in proxy conf file (/sbin/proxy.conf): realm MYAUTH { type = radius authhost = Radius_server_IP:Port] secret = RadiusSharedSecret nostrip }
Modify virtual server information in /etc/raddb/mods-enabled/eap.conf: ttls{ ......... ......... virtual_server = "proxy-inner-tunnel" }
In /etc/raddb/sites-enabled creates a softlink proxy-inner-tunnel pointing to /etc/raddb/sites-available/proxy-inner-tunnel. Modify proxy-inner-tunnel to add the proxy realm: authorize {
update control { &Proxy-To-Realm := "MYAUTH" } }

0人赞添加讨论(0) 举报

我只想做你的唯一

3楼-- · 2019-07-20 02:16

Ensure in the eap module configuration

proxy_tunneled_request_as_eap = no

Configure your proxy realm in proxy.conf

Set proxy realm in inner server

update control {
    Proxy-To-Realm := <realm>
}

0人赞添加讨论(0) 举报

how to configure FreeRADIUS to proxy the PAP reque

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间