Monitoring, Management & Location Tracking

Troubleshooting RADIUS Authentication Problems with radtest

When using RADIUS to authenticate AirWave users, radtest is helpful to manually check problems. Possible problems that can be checked with a manual test are:
- basic connection issues
- wrong shared secret
- invalid username/password
- valid return attribute to place the user in a role

The format of rad test is:
radtest <user> <password> <RADIUS IP>:<RADIUS PORT> <RETURN RADIUS NAS-PORT> <SHARED SECRET> 0 <RETURN RADIUS IP>

An example of running this:
[root@discovery mercury]# radtest user1234 fakePasssword 10.1.1.150:1645 1812 secret 0 10.10.10.12
Sending Access-Request of id 29 to 10.1.1.150 port 1645
User-Name = "user1234"
User-Password = "fakePassword"
NAS-IP-Address = 10.10.10.12
NAS-Port = 1812
Framed-Protocol = PPP
rad_recv: Access-Accept packet from host 10.1.1.150:1645, id=29, length=99
Aruba-Admin-Role = "aruba-corp-users-via-radius"
Framed-Protocol = PPP
Service-Type = Framed-User
Class = 0x30080487000b013700010a0101cf01cc36083d371e830000000020009abc

Once an access-accept is received, confirm that AMP has a user role with the exact name that is returned by Aruba-Admin-Role.

Version History
Revision #:
1 of 1
Last update:
‎06-25-2014 04:22 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.