I need to set up a RADIUS server for my home network.
-
I need to set up a RADIUS server for my home network.
-
webhatreplied to Ryan Castellucci :nonbinary_flag: last edited by
@ryanc I did that last year when i had had enough of having to update passwords on my network equipment in my home lab. I ended up installing OpenLDAP to administer the backend
-
jbaggsreplied to Ryan Castellucci :nonbinary_flag: last edited by
@ryanc I ... have one, for that, because reasons.
-
Ryan Castellucci :nonbinary_flag:replied to jbaggs last edited by
@jbaggs I'm thinking about doing WPA-PSK with RADIUS and dynamic VLANs.
-
jbaggsreplied to Ryan Castellucci :nonbinary_flag: last edited by
@ryanc Done and done?
-
@ryanc Like seriously get out of my 10 years ago head.
-
@ryanc I do have some qualms with how openwrt handles some of it and wanted to grind on that in the future but if yo"re playing with it I suspect you'll get there first.
-
@ryanc So, every device that joins my wireless network has a certificate, and it gets put into a specific VLAN based on that certificate. laptops, cell phones, guest devices, SDR feeder devices etc. The Freeradius code does what I want. Some of the router code probably needs some reevaluation though. If you want to discuss let me know.
-
Ryan Castellucci :nonbinary_flag:replied to jbaggs last edited by
@jbaggs I did the work to get OpenWRT support for the access points I have, and two of my devices are set up with serial consoles so that I can network boot OpenWRT images for experimentation. I can probably write a patch if I don't like the behavior.
-
jbaggsreplied to Ryan Castellucci :nonbinary_flag: last edited by [email protected]
@ryanc Nice. I got a bit incoherently ranty there. Sorry for that. You just reminded me of a side project I put on the back burner and never got back around to. You said you are doing PSK though, and the issue I noticed only applies to EAP-TLS, so you likely won't hit it.