iT邦幫忙

0

freeradius +windows AD +AP

最近在測試freeradius連線,全部安裝設定完,下面兩項都成功了,但是radtest測試AP位置卻失敗,用我電腦NTRadPing軟體也沒成功,/etc/raddb/clients.conf有設定電腦和AP了

ntlm_auth --request-nt-key --domain=DOMAIN(大寫)–username=AD 帳號 --password=AD 帳號密碼

radtest test test localhost 0 testing123
LOG

Fri Jul 5 17:08:56 2019 : Info: Debugger not attached
Fri Jul 5 17:08:56 2019 : Warning: [/etc/raddb/mods-config/attr_filter/access_reject]:11 Check item "FreeRADIUS-Response-Delay" found in filter list for realm "DEFAULT".
Fri Jul 5 17:08:56 2019 : Warning: [/etc/raddb/mods-config/attr_filter/access_reject]:11 Check item "FreeRADIUS-Response-Delay-USec" found in filter list for realm "DEFAULT".
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server
Fri Jul 5 17:08:56 2019 : Warning: Ignoring "sql" (see raddb/mods-available/README.rst)
Fri Jul 5 17:08:56 2019 : Warning: Ignoring "ldap" (see raddb/mods-available/README.rst)
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server default
Fri Jul 5 17:08:56 2019 : Info: # Skipping contents of 'if' as it is always 'false' -- /etc/raddb/sites-enabled/inner-tunnel:332
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server inner-tunnel
Fri Jul 5 17:08:56 2019 : Info: Debugger not attached
Fri Jul 5 17:08:56 2019 : Warning: [/etc/raddb/mods-config/attr_filter/access_reject]:11 Check item "FreeRADIUS-Response-Delay" found in filter list for realm "DEFAULT".
Fri Jul 5 17:08:56 2019 : Warning: [/etc/raddb/mods-config/attr_filter/access_reject]:11 Check item "FreeRADIUS-Response-Delay-USec" found in filter list for realm "DEFAULT".
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server
Fri Jul 5 17:08:56 2019 : Warning: Ignoring "sql" (see raddb/mods-available/README.rst)
Fri Jul 5 17:08:56 2019 : Warning: Ignoring "ldap" (see raddb/mods-available/README.rst)
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server default
Fri Jul 5 17:08:56 2019 : Info: # Skipping contents of 'if' as it is always 'false' -- /etc/raddb/sites-enabled/inner-tunnel:332
Fri Jul 5 17:08:56 2019 : Info: Loaded virtual server inner-tunnel
Fri Jul 5 17:08:56 2019 : Info: Ready to process requests

參考來源
https://roamingcenter.tanet.edu.tw/table/freeradius+AD-v1.0.pdf
https://www.muzifei.com/post/freeradius_with_active_directory.html

這部份不容易 哈

2 個回答

0
門神JanusLin
iT邦超人 1 級 ‧ 2019-07-06 06:28:19
看更多先前的回應...收起先前的回應...
seeyounow iT邦新手 5 級 ‧ 2019-07-08 11:04:13 檢舉

我是照著這個做的呀,參考來源有提供連結,所以不懂為什麼本機可以,但遠程測試卻不行,ntlm_auth測試又有成功

Firewall 和 SELinux 全關試試

seeyounow iT邦新手 5 級 ‧ 2019-07-08 13:34:31 檢舉

都設disable並且關閉了

我有個疑問
你怎麼判斷本機 ok

seeyounow iT邦新手 5 級 ‧ 2019-07-09 08:46:11 檢舉

這個有成功radtest test test localhost 0 testing123

seeyounow iT邦新手 5 級 ‧ 2019-07-09 08:47:02 檢舉

回應Received Access-Accept

0
一級屠豬士
iT邦大師 1 級 ‧ 2019-07-08 16:29:16

自立自強,平安喜樂.

我要發表回答

立即登入回答