Hi
First of all setup your favorite php sql webserver
apt install php-db php-gd git freeradius freeradius-mysql
cd /var/www/web001/htdocs
git clone https://github.com/lirantal/daloradius.git
We have to import the freeradius 3.0 mysql schema first. Daloradius does only have freeradius 2.0 compatible sql schemas.
cat /etc/freeradius/3.0/mods-config/sql/main/mysql/schema.sql | mysql -u radius -p radius
Now we import the daloradius sql schema without freeradius 2.0 sql schemas
cat /var/www/web001/htdocs/daloradius/contrib/db/mysql-daloradius.sql | mysql -u radius -p radius
here my freeradius mysql setup
cd /etc/freeradius/3.0/mods-enabled
ln -s ../mods-available/sql
vim sql
driver = "rlm_sql_mysql"
dialect = "mysql"
server = "localhost"
port = 3306
login = "radius"
password = "abcdefg"
radius_db = "radius"
read_clients = yes
here my changes to eap (eap for authenticating mikrotik wireless via wpa2 enterprise and mikrotik ikev2 eap radius)
vim /etc/freeradius/3.0/mods-enabled/eap
eap {
...
#ikev2 eap radius
default_eap_type = peap
...
}
tls-config tls-common {
private_key_file = path_to_your_ssl_private_key
certificate_file = path_to_your_ssl_certificate
ca_file = path_to_your_ssl_cabundle
}
I use rapidssl server certificate.
https://support.microsoft.com/en-ph/help/814394/certificate-requirements-when-you-use-eap-tls-or-peap-with-eap-tls
here my changes to the “default” site
cd /etc/freeradius/3.0/sites-enabled
vim default
authorize {
...
auth_log
...
sql
}
accounting {
...
sql
...
}
session {
...
sql
...
}
post-auth {
...
reply_log
sql
...
}
session {
...
sql
...
}
here my bulk radius settings
cd /etc/freeradius/3.0
vim radiusd.conf
log {
...
auth = yes
...
auth_badpass = yes
...
}
https://wiki.freeradius.org/guide/SQL-HOWTO-for-freeradius-3.x-on-Debian-Ubuntu
you have to create a systemd override for the freeradius unit. otherwise freeradius won’t start correctly if mysql is not running.
systemctl edit freeradius
[Unit]
After=network.target mysql.service
setup daloradius config
vim /var/www/web001/htdocs/daloradius/library/daloradius.conf.php
CONFIG_DB_USER
CONFIG_DB_PASS
CONFIG_DB_NAME
Have fun!