i’am doing a final project for my Computer-IT Education. The Topic is “Implementation of a Radius Server and a 2FA System to secure a VPN”.
So far I’ve setup a privacyIDEA Server with the Freeradius Plugin (and Firewall and Windows Server2019 + Windows Client). All AD Users are synced with privacyIDEA. Everything is working and every AD-User needs to authenticate with Password + OTP Token to login via Radius.
Furthermore i want only users who belongs to a specific AD Group, are allowed to login via Radius.
“radius_auth” should the be the group which is allowed to login.
My rlm_perl.ini is configured like this:
This are my policies in privacyIDEA:
The Freeradius Logs shows:
“No match, no Radius attribute Filter-ID added”
“No match, no Radius attribute otherAttribute added”
“No match, no Radius attribute other Class added”
What am I doing wrong?
Appreciate any help