[linux] Radius problem

Mgr. Miroslav Baranko miroslav.baranko na upjs.sk
Středa Říjen 31 14:12:23 CET 2007 

Dobry den,
Ja by som mal na vas taku otazku, je to trosku mimo zamerania konfery ale 
mozno sa niekto uz s niecim podobnym stretol.

1. Ak je AP a FreeRadius v jednej sieti tak mi bez problemov funguje 
PEAPv0/EAP-MSCHAPv2 aj ked je na APcku ( WEP+FreeRadius , WPA+FreeRadius )

FreeRadius log:

---------------------------------------------------------------------------

  rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 9
  rlm_eap: Request found, released from the list
  rlm_eap: EAP/peap
  rlm_eap: processing type peap
  rlm_eap_peap: Authenticate
  rlm_eap_tls: processing TLS
  eaptls_verify returned 7
  rlm_eap_tls: Done initial handshake
  eaptls_process returned 7
  rlm_eap_peap: EAPTLS_OK
  rlm_eap_peap: Session established.  Decoding tunneled attributes.
  rlm_eap_peap: Received EAP-TLV response.
  rlm_eap_peap: Tunneled data is valid.
  rlm_eap_peap: Success
  Using saved attributes from the original Access-Accept
  rlm_eap: Freeing handler
  modcall[authenticate]: module "eap" returns ok for request 9
  modcall: leaving group authenticate (returns ok) for request 9
  Login OK: [meno.priezvisko na upjs.sk/<no User-Password attribute>] (from  
client test.ciakt port 27 cli 001b77144649)
 
---------------------------------------------------------------------------

FreeRadius Full log: http://pastebin.com/f12c3edec

2.Ak je AP v jednej sieti napr. 192.168.1.0  a FreeRadius napr. 192.168.2.0 
tak mi overovanie funguje na vecsine typov (napr. Wline 3000g nie) funguje 
iba z rezime (WEP + FreeRadius). A (WPA + FreeRadius) nejde.

FreeRadius log:

-------------------------------------------------------------------

  rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
  Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 1
  rlm_eap: EAP Identity
  rlm_eap: processing type tls
  rlm_eap_tls: Initiate
  rlm_eap_tls: Start returned 1
  modcall[authenticate]: module "eap" returns handled for request 1
modcall: leaving group authenticate (returns handled) for request 1
Sending Access-Challenge of id 0 to 158.197.240.246 port 1024
        EAP-Message = 0x010100061920
        Message-Authenticator = 0x00000000000000000000000000000000
        State = 0xc0c9c45e1be00c03ecb58ef77588faa9
Finished request 1

--------------------------------------------------------------------

FreeRadius Full log: http://pastebin.com/f129d1da8


Ci ste sa stretli stym ze overenie nefunguje ak FreeRadius a APcko niesu v 
jednej sieti : (wpa/wpa2 + FreeRadius a na wline 3000g dokonca aj wep + 
FreeRadius).


vdaka.

S pozdravom M.Baranko

Další informace o konferenci linux