I got the basic Radius server set up talking to RSA Authentication Manager and I got as far as getting WebAdmin logins authenticated via Radius, so that's all working and happy. I added 'webadmin' NAS Identifier to the user's profile on the Radius side and enabled Radius auth on the WebAdmin settings page and that was all. So at least the basic connectivity was working at that time, so I wanted to try L2TP from my Windows XP box. I set it up as per instructions from the Knowledge Base, first with authentication from Local Users database and that seems to be working just fine. I can authenticate and establish connection to the firewall through L2TP, no problem. However, when I switch authentication on L2TP from Local Users to Radius Server and provide the same credentials that work on the WebAdmin login (via same Radius as well), the connection is rejected and Radius server logs rejected authentication request coming from Astaro. So Astaro definitely attempts to auth incoming L2TP request with Radius, but it rejects it for some reason. I did add another NAS Identifier to the same profile called 'l2tp', but I wonder if these ids can be multivalued or not. WebAdmin still works with 2 NAS IDs in the profile, so I suspect that's not an issue.
Any ideas?
This thread was automatically locked due to age.