Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1305
Views
0
Helpful
1
Replies

WatchGuard SSLVPN with Radius

Go to solution
tshemon
Level 1
Level 1

‎11-11-2021 07:07 AM

So setup WatchGuard Radius per Duo documentation.
Setup AD User group VPN and added to NPS and also added to VPN group for SSLVPN on Firebox.
When I go to authenticate with user get an error on Server “A RADIUS message was received from the invalid RADIUS client IP address 192.168.0.1.” (192.168.0.1 is WatchGuard)
Proxy Config
[radius_client]
host=127.0.0.1
secret=XXXXXXXXXXXXXXXX
pass_through_all=true
[radius_server_auto]
ikey=XXXXXXXXXXXXXXXXXXXX
■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■
api_host=■■■■■■■■■■■■■■■■■■■■■■■■■■■■■■
radius_ip_1=192.168.0.1
radius_secret_1=radiuspassword
client=radius_client
port=1645
failmode=safe
pass_through_all=true

NPS is on the same server as proxy, Also tried using port 1812.
Both running on Windows Server 2019

Have a Case open with Duo but it’s been a 24hrs and still sitting as pending.
Thanks,
Tom

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
DuoKristina
Cisco Employee
Cisco Employee

‎11-15-2021 05:57 AM

It looks like you solved this by updating the port in this thread: WatchGuard SSLVPN with Radius.

Duo, not DUO.

View solution in original post

0 Helpful
1 Reply 1

Go to solution
DuoKristina
Cisco Employee
Cisco Employee

‎11-15-2021 05:57 AM

It looks like you solved this by updating the port in this thread: WatchGuard SSLVPN with Radius.

Duo, not DUO.
0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents