Different authentication for Multiple SSIDs
ChristopherNeufer Neufer
neuferchris at yahoo.de
Tue Apr 4 12:52:10 UTC 2023
Hello Together,
right now im trying to configure a Radiusserver with two different authentication mehtods.
We have two SSIDs
SSID1: WLAN-TLS
SSID2: WLAN-TLS-MSCHAPv2
For SSID1 only EAP-TLS should work.For SSID2, EAP-TLS and MSCHAPv2 should work.
Im no sure, how to get this working.
This is my sites-enabled config:
server default {
listen {
type = auth
ipv4addr = 192.168.0.2
port = 0
limit {
max_connections = 16
lifetime = 0
idle_timeout = 30
}
}
authorize {
rewrite_called_station_id
if (Called-Station-SSID == "WLAN-TLS") { eap {
ok = return
}
}
preprocess
mschap
suffix
files
Autz-Type New-TLS-Connection {
ok
}
}
authenticate {
Auth-Type MS-CHAP {
mschap
}
mschap
eap
}
}
I played around a bit with "Called-Station-SSID" but i could not get it work.
Would be nice if somene can provide me a hint :P
Kind regardsChris
More information about the Freeradius-Users
mailing list