FreeRadius + PI config

Andy · September 19, 2022, 12:29pm

Hi we have installed PI 3.7.3 on one server and FreeRadius plugin on next.

How can configure FreeRadius plugin to “know” about PI server?

Is it in rlm_perl.ini file?

In my case it should be

URL = https://my_PIserver_IPvalidate/check
right ?

Regards

cornelinux · September 19, 2022, 7:00pm

Welcome, to privacyIDEA. Have fun authenticating in a secure way.

Yes, it would be in rlm_perl.ini

URL = https://your.next.server/validate/check

Regards
Cornelius

Andy · September 20, 2022, 10:50am

Thanks a lot for answer
It works like a charm

A few question:

If we wanna use more than one realm and resolver what way it can be define in rlm_perl.ini file REALM = one, two, etc… RESCONF = one, two, etc and what order they applied?
How can we customize portal for users? Is it possible?
Is it possible restrict users to login via browser in portal PI for enroll tokens? Can we manage access according AD groups membership?
Is the are way to change www server (from apache to nginx) w/o reinstall?
Regards

cornelinux · September 20, 2022, 6:50pm

only one

Yes. it is in the online docs.

dont quite understand what you mean. i assume: yes.

keep database and config.
remove apache
install nginx