juniper authentication with freeradius
Bjørn Mork
bjorn at mork.no
Thu Aug 16 12:57:29 CEST 2007
"ashish verma" <ashish.scit at gmail.com> writes:
> oh.. i didnt have dictionary.juniper file under /etc/freeradius.
> so i added those lines in "dictionary" file under /etc/freeradius.
> and this is my juniper side configuration.
>
> authentication-order [ radius password ];
> radius-server {
> 192.168.1.49 {
> port 1812;
> accounting-port 1813;
> secret "$9$mTnCOBEyrvO1SeKM-d"; ## SECRET-DATA
> }
> }
You might need to specify the source address here. I.e.
radius-server {
192.168.1.49 {
port 1812;
accounting-port 1813;
secret "$9$mTnCOBEyrvO1SeKM-d"; ## SECRET-DATA
source-address 192.168.1.10;
}
}
> i tried doing it without specifying the ports as well..but didnt work.
>
> under "users" file i have this
>
> edward Auth-type := Local, User-Password = "edward"
> Juniper-Local-User-Name = "fritz12"
Did you define the local user "fritz12" on the router?
> clients.conf contains
>
> client 192.168.1.10/24 {
> secret = secret
> shortname = junoscope.server.name
> type = Juniper:nas
> }
That's a somewhat strange entry. I would have expected either
'client 192.168.1.0/24' or 'client 192.168.1.1'
Do you get anything in the radius logs, indicating that the connection
is OK?
Bjørn
More information about the Freeradius-Users
mailing list