The Summit Open Source Development Group

User Tools

Site Tools

You are here: Welcome! » Unifi Guides / Examples » FreeRADIUS EAP-TLS Example for 1x Authentication
unifi:freeradius

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revisionBoth sides next revision
unifi:freeradius [2015/11/01 11:55] brielleunifi:freeradius [2015/11/01 12:02] brielle
Line 9: Line 9:
  
 ===== Set up eap.conf ===== ===== Set up eap.conf =====
-In ''/etc/freeradius'', you'll find ''eap.conf''+Below is an example of what you need to put in ''/etc/freeradius/eap.conf'' to handle the proper authentication methods, as well as enable future functionality.
- +
-Below is an example of what you need to put in ''eap.conf'' to handle the proper authentication methods, as well as enable future functionality.+
  
 <code># -*- text -*- <code># -*- text -*-
Line 99: Line 97:
  
 ===== Set up clients.conf ===== ===== Set up clients.conf =====
 +You'll need a client configuration for each Unifi device (or device group) that will be querying the FreeRADIUS server.
 +
 +**Note:** //each device (such as a UAP) will need to have to connectivity to the FreeRADIUS server - this includes both a network route, and TCP/UDP ports 1812 and 1813.//
 +
 +In ''/etc/freeradius/clients.conf'', add one group like:
 +<code>
 +client 192.168.0.0/24 {
 +  secret = CHANGEME
 +        nastype           = other
 +}
 +</code>
  
 +You can use single IPs (''192.168.0.2'' or ''2001::beef'') or netblocks (''192.168.0.0/24'' or ''2001:beef::/64''), and the device with that single IP or devices within that netblock will use the password specified as 'CHANGEME'.

Page Tools

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki