Powered by Jitbit .Net Forum free trial version. dismiss

HomeInstallation

Installation Issues

TekRadius Server + SoftEther VPN server Messages in this topic - RSS

hkg.cnn
hkg.cnn
Posts: 8


10.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Hi,

I try to put TekRadius Server (v5.3.2) and SoftEther VPN server (Ver 4.22, Build 9634, beta) working together. Installed TekRadius Server and tested OK with NTRadPing locally and remotely. However I cannot get SoftEther VPN server to work properly with TekRadius. I have created Clients, Users and User Groups.

In Client:
- Add IP address where SoftEther VPN server resides
- Add Secret Key
- Add User Name Part as "(^)([a-z]+)(@.+$)"
- Add Vendor "ietf"

In Users:
- Create an user
- Add Attributes (User-Password - Check, Authentication-Method - Check - PAP)

In User Groups:
- Create a Group
- Add Attributes (Simultaneous-Use - Check - 3, Class - Success-Reply - Accept, Class - Failure-Reply - Reject)

Also enable "Use Radius Server Authentication" in SoftEther VPN server. Add IP of Radius Server, Port (1812), Shared Secret, and Retry Interval in Radius Server Authentication settings.

The SoftEther VPN server might be able to talk to TekRadius Server Authentication. Any setting I have missed? Please advise. Thanks!

Jet
0 link
Admin
Admin
Administrator
Posts: 4920


10.08.2017
Admin
Admin
Administrator
Posts: 4920
Hi,

Can you send TekRADIUS log entries (Accessible through File menu) after setting log level to debug at Settings / Service Parameters?

Best regards,

Yasin KAPLAN
0 link
hkg.cnn
hkg.cnn
Posts: 8


11.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Hi Yasin,

Thanks! The log is as:


TekRADIUS Service 5.3.2.17 is (Microsoft Windows NT 6.1.7601 Service Pack 1) running under account 'NT AUTHORITY\SYSTEM'. Internet connection available.
0 link
Admin
Admin
Administrator
Posts: 4920


11.08.2017
Admin
Admin
Administrator
Posts: 4920
Please save settings and restart TekRADIUS service. Please also nake sure that there ia not any firewall or IP filter blocking RADIUS communications between TekRADIUS and VPN server.
0 link
hkg.cnn
hkg.cnn
Posts: 8


11.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Hi Yasin,

I did save the settings and restart TekRadius, but still failed to authenticate SoftEther VPN user. Thanks!

Jet
0 link
Admin
Admin
Administrator
Posts: 4920


11.08.2017
Admin
Admin
Administrator
Posts: 4920
Please send me TekRADIUS log again for an authentication attempt.
0 link
hkg.cnn
hkg.cnn
Posts: 8


11.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Here are the logs. Thanks!

0 link
Admin
Admin
Administrator
Posts: 4920


12.08.2017
Admin
Admin
Administrator
Posts: 4920
There is not any activity for authentication in TekRADIUS log. Please check VPN configuration, and also check if there is a firewall or IP filter between TekRADIUS and VPN server blocking RADIUS communications.
0 link
hkg.cnn
hkg.cnn
Posts: 8


12.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Hi Yasin,

You are correct. There is no activity from VPN server. I am sure the port is NOT blocked by firewall. The
TekRadius Server is tested OK with NTRadPing locally and remotely.


Jet
0 link
Admin
Admin
Administrator
Posts: 4920


13.08.2017
Admin
Admin
Administrator
Posts: 4920
Is it possible you to debug at VPN server? You may also try to have a Wireshark trace from VPN server side to see if RADIUS requests are made to the right RADIUS sever.
0 link
hkg.cnn
hkg.cnn
Posts: 8


13.08.2017
hkg.cnn
hkg.cnn
Posts: 8
Hi Yasin,

Thank you so much for your help and following up! The problem has been solved. The wildcard user (*) has to be created in SoftEther VPN server and appointed it as Radius Authentication. Restart both TekRadius and SoftEther VPN. Then it works.
0 link
Admin
Admin
Administrator
Posts: 4920


13.08.2017
Admin
Admin
Administrator
Posts: 4920
You welcome
0 link
nylanej14
nylanej14
Posts: 7


20.02.2019
nylanej14
nylanej14
Posts: 7
hi @admin can u help me with this error Error : parsing "*" - Quantifier {x,y} following nothing. [62]
Error Timestamp : 20.02.2019 09:31:58.212
Size : 126 / 126
Identifier : 7
Attributes :

Tunnel-Medium-Type = 1
Service-Type = 2
NAS-IP-Address = 148.72.209.119
Tunnel-Type = 1
NAS-Identifier = SoftEther VPN Server
User-Name = jlo
Called-Station-Id = VPN
NAS-Port-Type = 5
Calling-Station-Id = 148.72.209.113
Tunnel-Client-Endpoint = 148.72.209.113 tnx
0 link
Admin
Admin
Administrator
Posts: 4920


20.02.2019
Admin
Admin
Administrator
Posts: 4920
Hi,

Please download and apply the update at https://www.kaplansoft.com/tekradius/release/TekRADIUS-Update.zip or https://www.kaplansoft.com/tekradius/release/TekRADIUSLT-Update.zip depending on your TekRADIUS edition and try again.

Best regards,

Yasin KAPLAN
0 link






Powered by Jitbit Forum 8.3.8.0 © 2006-2013 Jitbit Software