FreeRadius 2.0.5 AD PEAP

Brooks, Kyle Kyle.Brooks at nrc-cnrc.gc.ca
Mon Aug 18 19:23:51 CEST 2008


Hi Alan,

There might be a slight miscommunication here these are two separate
boxes. Our production box is 1.1.7 and this new box 2.0.5

I have created the certificates using your scripts or openssl and have
had them signed by our Windows CA.  The appropriate OID's are there
according to the certificate authority.

Using the same switch connecting to 1.1.7 everything works great, change
config to 2.0.5 box and I'm stuck at the "server inner-tunnel" Sending
Access-Challenge.

I just don't know anymore what more to check.  Config files are
identical as much as possible.

Any help or direction is greatly appreciated.

Thanks!

Brooks, Kyle wrote:
> Sorry to bother you again, but can you provide any more insight with
> reference to the conf and debug files?

  Uh... what do you mean?

  The eap.conf file points to the certificates.  It hasn't really
changed from 1.1.7 to 2.0.5.  Just make sure the eap.conf in 2.0.5
points to the same certificates as you used for 1.1.7.

  There's very little else that can affect the EAP authentication
process, and create the effects you've seen.

  Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html




More information about the Freeradius-Users mailing list