Hi folks, we have the following scenario: Radius-Client (Checkpoint-Firewall NGX) -> IAS-Agent (Windows 2K3) acting as Proxy -> Freeradius-Server (1.0.2) All authentication requests are denied by the Freeradius-Server. It seems that Freeradius cannot read/decrypt the password sended by the IAS, because in logfile the password is like "\226\231\....." Is there any special configuration needed for this scenarion? btw: the scenario without proxy (Radius-Client -> Freeradius-Server) works perfectly... best regards and thanks
"Fitzner Daniel" <Daniel.Fitzner@t-systems.com> wrote:
All authentication requests are denied by the Freeradius-Server. It seems that Freeradius cannot read/decrypt the password sended by the IAS, because in logfile the password is like "\226\231\....."=20
Run the server in debugging mode. It will tell you what's wrong. You don't have the same shared secret on both ends. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
participants (2)
-
Alan DeKok -
Fitzner Daniel