Hi there
Ive managed to set up a hotspot that authenticates using an external form and passes the job of authentication back to the RB. My login.html on the routerboard redirects to an external page. The external page stores some detail in a database and passes authentication back to the routerboard once the database transaction completes. This works fine.
Im trying to take it to the next level and incorporate external RADIUS authentication.
I have a working RADIUS server which I can test remotely using radtest. All is well.
I have ameded the settings on the hotspot by only checking mac authentication and MAC cookie. I have also reconfigured my RADIUS settings so that they point to the new server rather than the routerboards user manager. This has been done by doing the following:
- change the address of the RADIUS server
- change the secret
- select the ppp and hotspot services on the RB RADIUS configuration
- on the Hotspot server profile change the NAS port type to ethernet.
Looking at the log on the RADIUS server at
tail -f /var/log/freeradius/radius.log
it is clear nothing is getting to the RADIUS server.
Furthermore, checking tcpdump on the server shows no attempts at traffic from RB to server however the ports are open on IP tables as proven by radtest from remote.
What else do I need to do to make this work?