Hiii bro,
Im trying to fix it side by side, and follow your Instruction, but Still getting error for configuring
and this is my radius server output :
---> Failed binding to authentication address 172.10.11.104 port 1812: Address already in use
/etc/raddb/radiusd.conf[240]: Error binding to port for 172.10.11.2 port 1812,
back to my srx conf, try to delete all [edit access] Hierarchy Level and [edit protocols dot1x] Hierarchy Level
Change srx conf looks like this ,
=====================================================
edit access - level
access {
radius-server {
172.10.11.104 {
port 5151;
secret "$9$zMGM3nCuORyrvM8JGji.mBIR"; ## SECRET-DATA
retry 5;
}
}
profile AUTH {
authentication-order radius;
radius {
authentication-server 172.10.11.104;
}
}
}
=======================================================================
edit protocols dot1x - level
protocols {
dot1x {
traceoptions {
file dot1x;
flag state;
flag dot1x-debug;
flag eapol;
}
authenticator {
authentication-profile-name AUTH;
interface {
fe-0/0/2.0 {
supplicant multiple;
mac-radius {
restrict;
}
no-reauthentication;
}
}
}
}
}
=======================================================================
and then I am trying to remove freeradius server, restart the server and install again.
this is my radiusd.conf
.
..
...
listen {
type = auth
ipaddr = 172.10.11.104
port = 5151
}
...
..
.
client switch {
ipaddr = 172.10.11.2
secret = asd@123
require_message_authenticator = no
nastype = other
}
=======================================================================
OK SKIP ----->
i am trying to troubleshoot with monitor start dot1x
May 28 00:51:40.743761 ASIF: Transferring Server-data to Auth Server for the user, 080027dffe56.
May 28 00:51:40.743930 SessId: 8O2.1x810e011b000b174a strlen: 22
May 28 00:51:40.744193 Queuing message to auth client to validate mac address 8:0:27:df:fe:56, user 080027dffe56 on interface fe-0/0/2.0
May 28 00:51:40.745271 ASIF: Radius REQUEST_ID: ff
May 28 00:51:40.745514 ASIF: Tx of Server-data to Auth Server succeeded
Number of connected supplicants: 1
Supplicant: 080027dffe56, 08:00:27:DF:FE:56
Operational state: Authenticated
Backend Authentication state: Idle
Authentcation method: Mac Radius
Authenticated VLAN: SEGMENT-11
Session Reauth interval: 3600 seconds
Reauthentication due in 0 seconds
=======================================================================
and show monitor dot1x
802.1X Information:
Interface Role State MAC address User
fe-0/0/2.0 Authenticator Authenticated 08:00:27:DF:FE:56 080027dffe56 <------ MAC AUTH SUCCESS
fe-0/0/2.0 Held 1C:75:08:32:07:2C 1c750832072c <---- Still Held waiting for AUTH
trying to fix again with linux output ---> /usr/sbin/freeradius -sX
# Executing section authorize from file /etc/freeradius/radiusd.conf
+- entering group authorize {...}
[eap] EAP packet type response id 1 length 34
[eap] No EAP Start, assuming it's an on-going EAP conversation
++[eap] returns updated
[files] users: Matched entry 080027dffe56 at line 205
++[files] returns ok
Found Auth-Type = EAP
# Executing group from file /etc/freeradius/radiusd.conf
+- entering group authenticate {...}
[eap] Request found, released from the list
[eap] EAP/md5
[eap] processing type md5
[eap] Freeing handler
++[eap] returns ok
Hiii, Ben Thank you so much for investing time in fixing the issue, so "PROBLEM SOLVED"
see you next time bro...