This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN with radius authentication

Alright, I have searched the whole forum, the knowledge base and google. But! Can't get it to work.

This is the situation:

ASG 8.003 with radius to a 2008 NPS server the radius test for a user (without setting the nas identifier) works.

I have created the user locally on the ASG and set the option authenticate remote. Then in the SSL vpn and in the user portal I allowed this user.

However I cannot log in to the portal nor the SSL vpn. What am I doing wrong? [:)]

TIA

This thread was automatically locked due to age.

Parents

0 BAlfson over 14 years ago

I'm a little confused, so if what I say doesn't apply, I won't be surprised...

If the same username is available in multiple locations, the Astaro will only consider the first one it finds (the HTTP Proxy in AD-SSO mode is the only exception I know). If there's a local user named Manfred and another Manfred in the AD that can be authenticated via RADIUS, the second won't be visible.

Likewise, in the Astaro, if you have defined authentication servers for both AD and RADIUS, the RADIUS server must come first in order for authentication by RADIUS to work.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 14 years ago

I'm a little confused, so if what I say doesn't apply, I won't be surprised...

If the same username is available in multiple locations, the Astaro will only consider the first one it finds (the HTTP Proxy in AD-SSO mode is the only exception I know). If there's a local user named Manfred and another Manfred in the AD that can be authenticated via RADIUS, the second won't be visible.

Likewise, in the Astaro, if you have defined authentication servers for both AD and RADIUS, the RADIUS server must come first in order for authentication by RADIUS to work.

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data