Re: Testing EAP-PEAP with freeradius

To: Bin Chen <binary.chen@gmail.com>
Subject: Re: Testing EAP-PEAP with freeradius
From: Bin Chen <binary.chen@gmail.com>
Date: Thu, 11 Jan 2007 10:48:20 +0800
Cc: freeradius-users@lists.freeradius.org
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding; b=LX1JW28cBcUKx11LPux8Tlsi0uXiZstFmhgVutOmFUkBryFb+3YyHzO5lwe1HM7paDTK1YN1RAGd/JfZEjbFKWF7X73KhqXnhhARebGq/syed8CfsFumzlKhEJ15l+IZCtd66FKzo2HKWuwn8+hOh+DinHZKwqF9EnYjV4y93mg=
In-reply-to: <45A5A001.9060604@gmail.com>
References: <45A5A001.9060604@gmail.com>
Reply-to: FreeRadius users mailing list <freeradius-users@lists.freeradius.org>
User-agent: Thunderbird 1.5.0.8 (X11/20061116)

By checking the radius log, I found this:

 rad_check_password:  Found Auth-Type EAP
auth: type "EAP"
 Processing the authenticate section of radiusd.conf
modcall: entering group authenticate for request 7
 rlm_eap: Request found, released from the list
 rlm_eap: EAP/mschapv2
 rlm_eap: processing type mschapv2

ERROR: Unknown value specified for Auth-Type. Cannot performrequested action.

 rlm_eap: Freeing handler
 modcall[authenticate]: module "eap" returns reject for request 7
modcall: group authenticate returns reject for request 7
auth: Failed to validate the user.


Bin Chen wrote:

Hi,
I want to deploy the EAP-PEAP in our WLAN hotspot, we are usingEAP-TLS before and it works fine with our AP. But a PKI is veryinconvenient so we want to migrate to EAP-PEAP.
Any changes need to be done to radiusd.conf? The client will providethe user-name and password, the file 'users' will used to match theuser-name and password? And is it enough? I mean, in EAP-TLS it alsoneed user-name and password, just left the same as EAP-TLS?
And, I also want to know when the AP or Windows client encounterobstacle to cooperate with this change, which client should I use toverify in freeradius side the configuration is work but not thewindows client's problem? Can radclient be used and how can I do?
I am newbie to this area and may be silly question, any help appreciated.

Thanks in advance.
Bin Chen

Follow-Ups:
- Re: Testing EAP-PEAP with freeradius
  - From: Alan DeKok <aland@deployingradius.com>

References:
- Testing EAP-PEAP with freeradius
  - From: Bin Chen <binary.chen@gmail.com>

Previous by Date: Testing EAP-PEAP with freeradius
Next by Date: Re: Freeradius-Users Digest, Vol 21, Issue 26 (Vacation)
Previous by Thread: Testing EAP-PEAP with freeradius
Next by Thread: Re: Testing EAP-PEAP with freeradius
Freeradius-Users January 2007 archives indexes sorted by: [ thread ] [ subject ] [ author ] [ date ]
Freeradius-Users list archive Table of Contents
More information about the Freeradius-Users mailing list

This archive was generated by a fusion of Pipermail (Mailman edition) and MHonArc.