I'm trying to setup IPsec vpn using EAP to authenticate. I tried to follow the guide here: https://wiki.opnsense.org/manual/how-tos/ipsec-rw-srv-eapradius.html (https://wiki.opnsense.org/manual/how-tos/ipsec-rw-srv-eapradius.html) but I run into some issues:
- The guide tells me to not select any "Backend for authentication" on "VPN: IPsec: Mobile Clients" however, the GUI does not allow this
- When trying to connect as user I have a "loading EAP_RADIUS method failed" in the logs and the auth request never hits the RADIUS server
- Of course I tested the RADIUS server conf
Does anyone have an idea?
The VPN-related docs would require a complete re-write since 4-5 years, but dont hold your breath, its not gonna happen.
The Practical OPNsense book by Markus Stubbig is completely useless for any advanced (translation = any, in general) VPN topics either.
OPNsense Beginner to Professional book by Julio Cesar Bueno de Camargo isnt good either.
So, you have to go ahead, and figure yourself out everything VPN-related, the official and unofficial books suck for this "niche" topic.