[linux] Radius problem
Mgr. Miroslav Baranko
miroslav.baranko na upjs.sk
Středa Říjen 31 14:12:23 CET 2007
Dobry den,
Ja by som mal na vas taku otazku, je to trosku mimo zamerania konfery ale
mozno sa niekto uz s niecim podobnym stretol.
1. Ak je AP a FreeRadius v jednej sieti tak mi bez problemov funguje
PEAPv0/EAP-MSCHAPv2 aj ked je na APcku ( WEP+FreeRadius , WPA+FreeRadius )
FreeRadius log:
---------------------------------------------------------------------------
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 9
rlm_eap: Request found, released from the list
rlm_eap: EAP/peap
rlm_eap: processing type peap
rlm_eap_peap: Authenticate
rlm_eap_tls: processing TLS
eaptls_verify returned 7
rlm_eap_tls: Done initial handshake
eaptls_process returned 7
rlm_eap_peap: EAPTLS_OK
rlm_eap_peap: Session established. Decoding tunneled attributes.
rlm_eap_peap: Received EAP-TLV response.
rlm_eap_peap: Tunneled data is valid.
rlm_eap_peap: Success
Using saved attributes from the original Access-Accept
rlm_eap: Freeing handler
modcall[authenticate]: module "eap" returns ok for request 9
modcall: leaving group authenticate (returns ok) for request 9
Login OK: [meno.priezvisko na upjs.sk/<no User-Password attribute>] (from
client test.ciakt port 27 cli 001b77144649)
---------------------------------------------------------------------------
FreeRadius Full log: http://pastebin.com/f12c3edec
2.Ak je AP v jednej sieti napr. 192.168.1.0 a FreeRadius napr. 192.168.2.0
tak mi overovanie funguje na vecsine typov (napr. Wline 3000g nie) funguje
iba z rezime (WEP + FreeRadius). A (WPA + FreeRadius) nejde.
FreeRadius log:
-------------------------------------------------------------------
rad_check_password: Found Auth-Type EAP
auth: type "EAP"
Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 1
rlm_eap: EAP Identity
rlm_eap: processing type tls
rlm_eap_tls: Initiate
rlm_eap_tls: Start returned 1
modcall[authenticate]: module "eap" returns handled for request 1
modcall: leaving group authenticate (returns handled) for request 1
Sending Access-Challenge of id 0 to 158.197.240.246 port 1024
EAP-Message = 0x010100061920
Message-Authenticator = 0x00000000000000000000000000000000
State = 0xc0c9c45e1be00c03ecb58ef77588faa9
Finished request 1
--------------------------------------------------------------------
FreeRadius Full log: http://pastebin.com/f129d1da8
Ci ste sa stretli stym ze overenie nefunguje ak FreeRadius a APcko niesu v
jednej sieti : (wpa/wpa2 + FreeRadius a na wline 3000g dokonca aj wep +
FreeRadius).
vdaka.
S pozdravom M.Baranko
Další informace o konferenci linux