Radius PPPoE/SSTP/L2TP fail, but login works

syadnom · Tue Jul 03, 2012 3:19 am

I have configured radius to connect to my win2008r2 AD server. I have AAA in user set to allow radius. I can login to my router via SSH/Telnet with my AD usernames perfectly. I am not able to connect to a PPP session with those credentials at all. Also, I cannot login to WinBox with AD/Radius credentials. I don't see what is wrong. I have an RB750GL configured identically and it does work for the PPTP/SSTP/L2TP logins.

here is my config:

/radius
add accounting-backup=no accounting-port=1813 address=10.223.101.9 authentication-port=1812\
called-id="" disabled=no domain="" realm="" secret=secret service=\
ppp,login,hotspot,wireless,dhcp src-address=10.224.0.1 timeout=300ms
/radius incoming
set accept=no port=3799

/ppp aaa
set accounting=yes interim-update=0s use-radius=yes

/interface pptp-server server
set authentication=pap,chap,mschap1,mschap2 default-profile=default enabled=yes\
keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled

lordkappa · Tue Jul 03, 2012 3:22 am

Are your firewall rules set to allow access to port 1723?

syadnom · Tue Jul 03, 2012 3:26 am

Are your firewall rules set to allow access to port 1723?

Yes. Radius works for SSH logins.

I'm trying PPTP tunnels right now, getting the following error:

<pptp-o>: terminating... -user daniel authentication failed

but I can login via SSH to the same box.

syadnom · Tue Jul 03, 2012 3:45 am

solved: had to enable the 'allow inbound' option.

Radius PPPoE/SSTP/L2TP fail, but login works

Radius PPPoE/SSTP/L2TP fail, but login works

Re: Radius PPPoE/SSTP/L2TP fail, but login works

Re: Radius PPPoE/SSTP/L2TP fail, but login works

Re: Radius PPPoE/SSTP/L2TP fail, but login works

Who is online