I have a radius server that I use on our network for both authentication and bandwidth management. We use the Mac-address and a Password for Authentication. But i have a challenge, as long as a mac-address is on the server, any SM whose mac address is not on the server, can authenticate using a mac-address for any other SM as long as that other SM's mac-address is on the Radius server, and this SMs mac address has not on the server. Anyone this a solution please assist how we can overcome this.
Hey Moses,
Your radius server authenticates your subscribers using a username and password.
For ease of implementation, the PMP450 subscribers come preconfigured with the radius username as the SM's MAC address and the password as 'password'.
Correct me if I misunderstand, as I see it, your issue is that your radius server has the username (MAC address) and password of 'radio 1' stored, and when you change the default credentials of 'radio 2' to the username and password of 'radio 1', 'radio 2' authenticates using 'radio 1's radius profile.
I believe that's how the radius server is supposed to function. It doesn't authenticate based on the actual mac address of the subscriber radio, it instead authenticates based on the configured username and password which just happen to be the SM MAC address by default.
A solution to your problem could be to use unique usernames and passwords for your radius profiles.
1 Like