Reading Time: 1 minute, 23 secs

Install FreeRadius on CentOS 7 with DaloRadius for management

I have recently purchased a load of Ubiquiti UniFi equipment, as part of this i have the UniFi USG which in order to deploy a User VPN requires a RADUIS Server for user authentication. This article will run through how to install and set this up.

I will be using FreeRADIUS as this is the most commonly used, it supports most common authentication protocols.

Disable SELinux:
vi /etc/sysconfig/selinux

Add MariaDB to the CentOS Repo:

First we need to update our CentOS server and install the required applications:

We must now enable the FreeRADIUS and httpd services to run at boot:

We need to configure MariaDB:

Allow local connections only:

Configure the database to work with freeRADIUS:

Install PHP 7:

We need to add Radius ports to the firewall:

Now we will run Radius in debug mode to make sure it runs correctly:

Import the Radius database scheme:

Create a soft line for SQL:

configure the SQL module and change the database connection:

Change the group for the SQL folder to radiusd:

Installing Daloradius:

Import Daloradius MySQL:

Move to the httpd directory:

change permissions for httpd:

Modify configuration for MySQL:

To make sure everything works restart all services:

Access the web interface:

Default Login:
User: Administrator
Pass: radius

1 Like
5 Comments.
  1. USA

    I got 404 Forbidden error when going to the web interface URL. What I had to do is to disable Linux Security feature. Please update this post. Thank you and finally your guide helped me a lot!

    sudo setenforce 0 #disable SELinux

  2. USA

    Also when issue “radiusd -X”, i m getting this error. How to correct this? thanks.

    Failed binding to auth address * port 1812 as server default: Address already in use
    /etc/raddb/sites-enabled/default[59]: Error binding to port for 0.0.0.0 port 1812

    • this sounds like you already have something on your server bound to port 1812 netstat -plnt will help you find what is using that port

  3. USA

    For the linux security above. To permanently disable it. Do…

    vi /etc/sysconfig/selinux
    SELINUX=disabled

    • hey thanks for this, it was my assumption that this would be disabled or a rule created. I have added this to the article to clear it up 🙂

Leave a Comment.