Am 05.03.2008 um 16:35 schrieb Wolfgang Burger:
Hi again,
Hi stupid me,
The Client does'nt send the certificate. My wild speculation, which is a pure guess of a newbie:Is the Client in some sort of "TTLS-Mode", where he can't send a client-certificate, becauseSending Access-Challenge of id 183 to 192.168.1.24 port 1104 EAP-Message = 0x011000061520 tells him to do TTLS (Type 0x15)?
Of course the server demands TTLS. You told him to do so in eap.conf. Fix that.
And how do I tell the server, that a valid certificate is not enough to get in? In the first log-file, you see that the client can disable ttls and still is accepted.
Here I cant help you. Maybe someone else?
Thank you very much for any hint.
Cheers, no problem mate.
Regards Wolfgang Burger
Regards Wolfgang Burger