MAC Authentication and

Alexey Eronko alexey.eronko at gmail.com
Fri Apr 25 14:14:17 CEST 2008


Thanks for replay.

I adjusted all AP to send MAC in one format.

What about this question : 

Another interesting point is: do I right understand that I need to  restart
freeradius every time when I correct users file? Is is complicated for me,
what is other way? Maybe store MAC's in LDAP or SQL database?

Alexey

-----Original Message-----
From: freeradius-users-bounces+alexey.eronko=gmail.com at lists.freeradius.org
[mailto:freeradius-users-bounces+alexey.eronko=gmail.com at lists.freeradius.or
g] On Behalf Of Ivan Kalik
Sent: Friday, April 25, 2008 4:09 PM
To: FreeRadius users mailing list
Subject: Re: MAC Authentication and

Don't use the password.

00-22-de-4e-8f-1d   Auth-Type:= Accept

You are lucky that they are all sending mac addresses in same format. One
could be using - for delimiter, another : and the third one no
delimiter. Then you would need to store usernames (mac addresses)
without delimiters and remove delimiters from usernames that are
recieved with them.

Ivan Kalik
Kalik Informatika ISP


Dana 25/4/2008, "Alexey Eronko" <alexey.eronko at gmail.com> piše:

>Hello All,
>
>                I'm setupping my corporate wifi with freeradius as RADIUS
>server. I want to implement WEP network with  MAC Authentication thought
>freeradius. I have three access point and I want to store mac database in
>text file.
>
>                Here is an example:
>
>00-22-de-4e-8f-1d       Auth-Type:=Local, User-Password == "secret1"
>
>                Here is my MAC request:
>
>Packet-Type = Access-Request
>
>Thu Apr 24 11:42:49 2008
>
>        User-Name = "00-1c-26-20-9c-00"
>
>        User-Password = "secret1"
>
>        NAS-IP-Address = 192.168.11.1
>
>        Called-Station-Id = "00-20-a6-87-86-09:WEP"
>
>        Calling-Station-Id = "00-1c-26-20-9c-00;WEP"
>
>        NAS-Port = 2
>
>        NAS-Port-Type = Wireless-802.11
>
>        Client-IP-Address = 192.168.11.1
>
>
>
>The user-password field takes from radius clients(ap) configuration of
>freeradius. The problem is that I have different radius access password for
>three access points. I want to have one list for all AP.
>
>Is the way to  setup _one_  radius password for all AP only one?
>
>Another interesting point is: do I right understand that I need to  restart
>freeradius every time when I correct users file? Is is complicated for me,
>what is other way? Maybe store MAC's in LDAP or SQL database?
>
>
>
>Thanks
>
>
>
>Alexey
>
>
>

-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html





More information about the Freeradius-Users mailing list