Problems with PEAP
Martin Gadbois
martin.gadbois at colubris.com
Thu May 10 16:27:37 CEST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Alan DeKok wrote:
> pippo metallaro wrote:
>> i use freeradius with eap -peap and MySQL...but the freeradius don't send an
>> access-accept at the end of authentication ...the server send an
>> access-challenge,i don't know what's the problem...
>
> Perhaps you could try reading "eap.conf", or the FAQ, or other
> documentation that comes with the server.
>
What Alan points to is in the default eap.conf from the disto:
##################################################
#
# !!!!! WARNINGS for Windows compatibility !!!!!
#
##################################################
#
# If you see the server send an Access-Challenge,
# and the client never sends another Access-Request,
# then
#
# STOP!
#
# The server certificate has to have special OID's
# in it, or else the Microsoft clients will silently
# fail. See the "scripts/xpextensions" file for
# details, and the following page:
#
# http://support.microsoft.com/kb/814394/en-us
#
# For additional Windows XP SP2 issues, see:
#
# http://support.microsoft.com/kb/885453/en-us
#
# Note that we do not necessarily agree with their
# explanation... but the fix does appear to work.
#
##################################################
RTFM!
- --
============== +---------------------------------------------+
Martin Gadbois | "Please answer by yes or no. |
Sr. SW Designer | Uncooperative user waste precious CPU time" |
Colubris Networks Inc. | -- The Andromeda Strain, M. Crichton, 1969 |
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGQyvZ9Y3/iTTCEDkRAkAmAJ9A7Fk22hZNBtliHlb2dMYs49nYawCgiFxk
EQ/1vhPi3RL0h1wuC/vAATc=
=Rc9S
-----END PGP SIGNATURE-----
More information about the Freeradius-Users
mailing list