Page 1 of 1
MT Wireless AP with athentication against RADIUS
Posted: Mon Feb 26, 2018 10:00 pm
by ALDISBEHMANIS
Hello,
Is it possble to configure MT to authenticate against external RADIUS server using USERNAME (no MAC address as username) and password?
I see examples where clients MAC address is sent as username, but is it possible that MT passes through Radius auth requests using username AND password?
Thanks
Re: MT Wireless AP with athentication against RADIUS
Posted: Tue Feb 27, 2018 4:00 pm
by ALDISBEHMANIS
Really nobody knows?????
Re: MT Wireless AP with athentication against RADIUS
Posted: Tue Feb 27, 2018 4:06 pm
by CZFan
Does not seem you can do it with Wireless directly, but can do it using Hotspot
Re: MT Wireless AP with athentication against RADIUS
Posted: Wed Feb 28, 2018 7:41 pm
by ALDISBEHMANIS
Solved. You can do it. And it works. Both wireless and Capsman configs work.
/radius add accounting-backup=no accounting-port=1813 address=RADIUS_SRV_IP \
authentication-port=1812 called-id="" disabled=no domain="" realm="" \
secret=RADIUS_SHARED_SECRET service=wireless src-address=YOUR_ROUTER_REQUEST_SOURCE_IP_OPTIONAL timeout=300ms
And then under wireless security profile (simple or CAPS):
WPA2 EAP
Encr and group encr = AES
RADIUS EAP Accounting = yes
EAP method = passthrough
Re: MT Wireless AP with athentication against RADIUS
Posted: Thu Mar 01, 2018 12:35 am
by CZFan
Well done! And thx for the feedback, I learned something new