Radius Bridge and WAPROXY

[Luke | Skyliner]

Hi,

I am extending our 2FA installation with RadiusBridge (for OpenVPN usage for example). We use WAProxy.

How do i configurure RadiusBridge. If I:

- Point to the WebSrvs directly: mfa01.ourdomain.nl:8443/openotp/ it fails with 401. The logging says WAProxy header is not sent.

- Point to the WAproxy server: mfaproxy01.ourdomain.nl:8443/openotp/ I need a client ceritifacte for security. I issued one via Issue Server or Client SSL Certificate under Admin. I have copied this to my Radiusd server and modified the radiusd.conf (cert_file directive). However it keeps failing to start because it cannot find the certificate (the path is 100% correct). I have tried to convert the certificate to p12 with password, but no success. Also fiddling with permissions does not seem to help (less or more restrictive)

Do i need to do something special for this certificate to work?

[Benoît Jager]

Hello,

Is your radius bridge installed on the same machine where you run your waproxy?

Best regards

[Luke | Skyliner]

Yes the radius bridge is installed on the same machine as the waproxy

Op woensdag 10 maart 2021 om 12:15:31 UTC+1 schreef Benoît Jager:

[Yoann Traut (RCDevs)]

Hello, 

WAProxy and Radius Bridge can not run together on the same server.

This is a recent regression due to an improvement for reverse proxies HTTP headers management by WebADM. 

There is no possible workaround. You have to split these services on different servers.  

Regards