Monitoring, Management & Location Tracking

Troubleshooting RADIUS Authentication Problems with radtest

Aruba Employee

When using RADIUS to authenticate AirWave users, radtest is helpful to manually check problems. Possible problems that can be checked with a manual test are:
- basic connection issues
- wrong shared secret
- invalid username/password
- valid return attribute to place the user in a role

The format of rad test is:
radtest <user> <password> <RADIUS IP>:<RADIUS PORT> <RETURN RADIUS NAS-PORT> <SHARED SECRET> 0 <RETURN RADIUS IP>

An example of running this:
[root@discovery mercury]# radtest user1234 fakePasssword 10.1.1.150:1645 1812 secret 0 10.10.10.12
Sending Access-Request of id 29 to 10.1.1.150 port 1645
User-Name = "user1234"
User-Password = "fakePassword"
NAS-IP-Address = 10.10.10.12
NAS-Port = 1812
Framed-Protocol = PPP
rad_recv: Access-Accept packet from host 10.1.1.150:1645, id=29, length=99
Aruba-Admin-Role = "aruba-corp-users-via-radius"
Framed-Protocol = PPP
Service-Type = Framed-User
Class = 0x30080487000b013700010a0101cf01cc36083d371e830000000020009abc

Once an access-accept is received, confirm that AMP has a user role with the exact name that is returned by Aruba-Admin-Role.

Version history
Revision #:
1 of 1
Last update:
‎06-25-2014 04:22 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.