Hi,
I am trying to limit each user to have one session only. Currently, I can login via NAS (MikroTik) through a freeradius server. However simultaneous-use is not working. I have set Simultaneous-Use to 1 in radcheck. Port-Limit to 1 in radreply.
NAS received Port-Limit=1. I can see it in the log. But I can still can log on with the same user on two devices.
Simultaneous-Use is working if I use PAP. radtest works.
#radtest user password 127.0.0.1 100 secret
Any ideas?
My problem too. I hope somebody has a solution.
I also have some problem.
Simultaneous-Use is working if I use PAP. radtest works.
#radtest user password 127.0.0.1 100 secret
FreeRADIUS will never be 127.0.0.1 on the router.
Enable radius logging on your router.
/system logging
add topics=radius,debug action=memory
Try the login again and check your log.
edit: If the username is already logged in, you should get a Access-Reject with a message stating “you are already logged in 1 times”.
I haven’t mentioned this in a while, so I will here. If you have FreeRADIUS set to store the passwords encrypted in the SQL database, you can’t use http-chap as a login-by method, You must use http-pap, or do not store the passwords encrypted in FreeRADIUS.