Hi,
I am trying to get RADIUS centralised administration working on the SRX1500s we have and it just will not work.
Set up:
RADIUS (radius VR) --- SRX --- Customer VR ---- Core router
So, the Core router authenticates fine with no issues.
It uses the same route to get to the RADIUS that the SRX uses. I am useing the Customer-VR interface as the source address and the correct shared password. All the routing is fine or the Core would not work.
Here is my configuration on the SRX:
set system authentication-order radius
set system authentication-order password
set system radius-server 192.168.100.1 secret "$9$-Gd2aji.5z6qm6Au1yrLxNdYgaZUH.P"
set system radius-server 192.168.100.1 retry 3
set system radius-server 192.168.100.1 source-address 192.168.200.1
set system login user remote full-name "RADIUS Authenticated"
set system login user remote uid 9999
set system login user remote class read-only
set system login user RO uid 2008
set system login user RO class read-only
set system login user SU uid 2009
set system login user SU class super-user
set system login user OP uid 2007
set system login user OP class operator
The RADIUS has been configured correctly too or I would not be able to logon to other systems using it.
When I run a traceoptions tthe file is empty, so it is almost like the SRX is not even attempting to contact the RADIUS Server.
There must be something on the SRX that needs enabling for this to work. Could someone help please.
Thanks