Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Panel
bgColor#fff

Check the following:

  1. The RADIUS server specified in /etc/radsec.conf is running and can be reached over TLS or UDP (depending on your setting in radsec.conf).
  2. Check that the <RP-realm> value in the tidc command-line is what you have registered for your organisation in your Trust Router operator's Moonshot portal.
  3. There may be a problem with the your Trust Router operator's APC or the trust router. Please contact your Trust Router operator.

 

Problem

I can't seem to be able to connect my service to the trust router infrastructure. I get the following error when running the TIDC command:

...

Panel
bgColor#fff
Check the following:
  1. You have the FreeRADIUS user (freerad on Debian systems, radiusd on RHEL systems) listed in /etc/moonshot/flatstore-users.
  2. You are running the TIDC command as the FreeRADIUS user and that you have run the unset DISPLAY command before running the TIDC command.
  3. You have imported the Trust Router credentials using the moonshot-webp command as the FreeRADIUS user in Section 4.4.1 of Install an IdP on Debian 7 or Install an IdP on RHEL/CentOS/SL 6. To verify you have, execute ls -la ~/.local/share/moonshot-ui/identities.txt as the FreeRADIUS user, and you should see the file listed.
  4. If you use Network Address Translation (NAT), check that you are forwarding TCP ports 2083 and 12309 both in- and outbound, and that the public IP address is correct in the configuration of your Trust Router operator.
  5. If your service is firewalled, check that TCP ports 2083 and 12309 are open both in- and outbound, and that the public IP address is correct in the configuration of your Trust Router operator. Your firewall should also support hairpinning.
  6. You are running the newest version of the trust router and Moonshot software. If you were part of the Janet or GÉANT Moonshot Pilots, you must update your software to the newest versions.
  7. You have installed the dbus-x11 package. This package is not installed as part of the package dependencies, but it is part of the instructions in Section 2 of the platform-specific instructions for Install an Identity Provider. It is a client library and will not require the installation of the X11 system.

...