how can I configure FreeRADIUS to proxy the PAP request inside an EAP-TTLS tunnel? Client sends a EAP-TTLS with PAP as inner protocol to freeradius server. I want to proxy the PAP request to another RADIUS server which understands only PAP. How could I configire freeradius for this.
标签:
freeradius
相关问题
- Add a VSA (Vendor Specific Attribute) to Access-Ac
- Freeradius: Request without User-Password attribut
- FreeRadius 3.0.13 rlm_rest restful api authenticat
- Freeradius Filter ID
- Freeradius: problems with Open Directory, no rlm_o
相关文章
- Freeradius: Request without User-Password attribut
- FreeRadius 3.0.13 rlm_rest restful api authenticat
- FREERADIUS:问题打开目录,没有rlm_opendirectory *现有的。(Freera
- 设置FREERADIUS + LDAP +单点登录(Setup FreeRadius + ldap
- 未能链接到模块“rlm_python”:rlm_python.so(Failed to link t
- Freeradius Filter ID
- Freeradius: problems with Open Directory, no rlm_o
- CoovaChilli Authentication
Just putting the solution steps in case someone needs it.
Add realm in proxy conf file (/sbin/proxy.conf): realm MYAUTH { type = radius authhost = Radius_server_IP:Port] secret = RadiusSharedSecret nostrip }
Modify virtual server information in /etc/raddb/mods-enabled/eap.conf: ttls{ ......... ......... virtual_server = "proxy-inner-tunnel" }
In /etc/raddb/sites-enabled creates a softlink proxy-inner-tunnel pointing to /etc/raddb/sites-available/proxy-inner-tunnel. Modify proxy-inner-tunnel to add the proxy realm: authorize {
update control { &Proxy-To-Realm := "MYAUTH" } }
Ensure in the eap module configuration
Configure your proxy realm in
proxy.conf
Set proxy realm in inner server