I am setting up sstp server on vyos and trying to authenticate users using radius server. Users are able to authenticate using other services like l2tp but with SSTP I am getting this error
Server
Client
These are my configurations and on more thing is that if mode is set to local. Users can authenticate.
authentication {
local-users {
username xxxxxx {
password xxxxxx
}
}
mode radius
protocols pap
protocols chap
protocols mschap
protocols mschap-v2
radius {
accounting-interim-interval 60
acct-timeout 3
dynamic-author {
key xxxxxx
port 3799
server xxxxx.tld
}
max-try 20
server xxxxx.tld {
acct-port 1813
key xxxxxx
port 1812
}
source-address xxx.xxx.135.174
timeout 3
}
}
client-ip-pool Con-Pool {
range xxx.xxx.206.0/22
}
default-pool Con-Pool
gateway-address xxx.xxx.206.1
log {
level 5
}
max-concurrent-sessions 1
ppp-options {
disable-ccp
ipv6 deny
}
ssl {
ca-certificate CA
certificate Server
}
These are my configurations and on more thing is that if mode is set to local. Users can authenticate.
authentication {
local-users {
username xxxxxx {
password xxxxxx
}
}
mode radius
protocols pap
protocols chap
protocols mschap
protocols mschap-v2
radius {
accounting-interim-interval 60
acct-timeout 3
dynamic-author {
key xxxxxx
port 3799
server xxxxx.tld
}
max-try 20
server xxxxx.tld {
acct-port 1813
key xxxxxx
port 1812
}
source-address xxx.xxx.135.174
timeout 3
}
}
client-ip-pool Con-Pool {
range xxx.xxx.206.0/22
}
default-pool Con-Pool
gateway-address xxx.xxx.206.1
log {
level 5
}
max-concurrent-sessions 1
ppp-options {
disable-ccp
ipv6 deny
}
ssl {
ca-certificate CA
certificate Server
}
I have also checked radius server. Getting no logs there.
Is logging enabled on radius server? And working?
Also , use tcpdump to capture radius packets.
yes logging is enabled on radius. I will share tcpdump of radius. Thanks
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.