Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 8 replies
  • Subscribers 39 subscribers
  • Views 7100 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Radius test failed

Josh Rogalski

I am setting up Sophos XG Wireless for the first time, and having some trouble with Radius.  I have a ticket open with Sophos support, but wanted to reach out to the community to get their take on the issue.  I followed the instructions by Sophos for setting up the Radius server on my DC, and adding it as an authentication mechanism under the "Services" settings for "SSO using RADIUS accounting request.  The test fails, but gives little information as to why.  Are there any logs I can transfer from the XG to give me more information on what I am missing in the radius setup?

Some of the settings I am not familiar with, such as "domain" which doesnt seem to show up in anyone else's screenshots.  Also do I need "NAS identifier" and "NAS port type"?

Error message that I get testing:



This thread was automatically locked due to age.
Parents
  • 0

    After some work with Sophos Support we were able to get Radius working, almost all of the issues were on the Radius server side because it is an old confusing technology.  What we found is that you basically need a very basic Radius set up to get it going.  The "group name attribute" still confuses me, but we have it set to our domain without the qualifier after the "." and it is working.  If anyone else is having trouble with getting started, send me a direct message and I would be glad to share our settings/experience. 

Reply
  • 0

    After some work with Sophos Support we were able to get Radius working, almost all of the issues were on the Radius server side because it is an old confusing technology.  What we found is that you basically need a very basic Radius set up to get it going.  The "group name attribute" still confuses me, but we have it set to our domain without the qualifier after the "." and it is working.  If anyone else is having trouble with getting started, send me a direct message and I would be glad to share our settings/experience. 

Children
No Data
Unfiltered HTML