I have a router in AP mode that is connect to Freeradius Server. (All ok here)
Now i want to have two stations (One Mikrotik and Another Ubiquiti) that connect to my AP via wireless (5Ghz network)
In Ubiquiti equipment its ok. I already configured the username and the password of 'some' user that is already registered on radius server and he is autenticated.
In Mikrotik router the problem start. I saw somewhere that Mikrotik (station) doesn't support the "password" field for users.
He only supports the username. So i decided to do the authentication via MAC.
I add the mac-address of station in radius (radcheck) table with empty password. I ticked "Mac Authentication" in Security Profiles - Radius, and put the dropdown "MAC Mode" -> "as username".
But the log on radius server shows:
rlm_sql (sql): Released sql socket id: 0
++[sql] returns ok <--- here he finds the user on table, and the group associated..
++[expiration] returns noop
++[logintime] returns noop
WARNING: Please update your configuration, and remove 'Auth-Type = Local'
WARNING: Use the PAP or CHAP modules instead.
User-Password in the request does NOT match "known good" password.
Failed to authenticate the user.
Using Post-Auth-Type Reject
<-- I dont even use pap or chap :\
I already tried to fix it by putting:
# See "Authorization Queries" in sql.conf
sql
if (ok) {
update control {
Auth-Type := Accept
}
}
In sites-available/default
But seems that is not the solution..
Can anyone help ?
Thanks.
PS:
