Monitoring, Management & Location Tracking

 View Only
last person joined: one year ago 

Articles relating to existing and legacy HPE Aruba Networking products and solutions including AirWave, Meridian Apps, ALE, Central / HPE Aruba Networking Central, and UXI / HPE Aruba Networking User Experience Insight
Back to Library

Troubleshooting RADIUS Authentication Problems with radtest 

Jun 25, 2014 07:22 PM

When using RADIUS to authenticate AirWave users, radtest is helpful to manually check problems. Possible problems that can be checked with a manual test are:
- basic connection issues
- wrong shared secret
- invalid username/password
- valid return attribute to place the user in a role

The format of rad test is:
radtest <user> <password> <RADIUS IP>:<RADIUS PORT> <RETURN RADIUS NAS-PORT> <SHARED SECRET> 0 <RETURN RADIUS IP>

An example of running this:
[root@discovery mercury]# radtest user1234 fakePasssword 10.1.1.150:1645 1812 secret 0 10.10.10.12
Sending Access-Request of id 29 to 10.1.1.150 port 1645
User-Name = "user1234"
User-Password = "fakePassword"
NAS-IP-Address = 10.10.10.12
NAS-Port = 1812
Framed-Protocol = PPP
rad_recv: Access-Accept packet from host 10.1.1.150:1645, id=29, length=99
Aruba-Admin-Role = "aruba-corp-users-via-radius"
Framed-Protocol = PPP
Service-Type = Framed-User
Class = 0x30080487000b013700010a0101cf01cc36083d371e830000000020009abc

Once an access-accept is received, confirm that AMP has a user role with the exact name that is returned by Aruba-Admin-Role.

Statistics
0 Favorited
4 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.