Hi, it is possible to configure unknown users in Radius users?
I would like to configure dhcp server with radius (mac authentication) but I need unknown users pool too.
If I set dhcp with use radius and user found in Users everything fine but if user not found I received refusal and client not received any ip.
I attached logs when user is known and user is unknown:
Yes, it is possible to configure unknown users in the Radius server. In fact, many Radius servers have a feature called “default user” or “default pool” that is designed specifically for this purpose. This allows unknown users to be assigned a default set of attributes, such as an IP address, VLAN, or bandwidth limits. By configuring a default pool, you can ensure that all clients are able to obtain an IP address from the DHCP server, regardless of whether they are authenticated by the Radius server or not.
I’m trying to find solution for the same problem as described - authenticate unknown MAC addresses for DHCP to put them in different IP pool.
As XhabvhQonirtm described about “default user”… I can’t find such feature in RouterOS’s Radius/user manager.
Did you find solution for this problem?
Well, this topic is about Mikrotik User Manager, and not “many Radius servers”, and I could not see such an option there yet. I guess some scripting would be required.
I don’t think it can be solved with scripting.
What we need is a default user entry (that matches any username that is not explicitly in the table).
Or even better: the possibility to specify username as a regexp, so you can add entries that match e.g MAC addresses with some OUI or (with some effort) could match globally unique MAC addresses but not randomly assigned MAC addresses.
(the difference is in the 0x02 bit of the first octet)