Microsoft: SmardCard or Certificate Auth
Alan DeKok
aland at deployingradius.com
Thu Nov 12 09:14:09 CET 2009
swatzy wrote:
> I'm trying to configure a FreeRadius server to perform a certification
> authentication from a Windows Laptop.
> I have follow the steps at
> http://wiki.freeradius.org/WPA_HOWTO#HOWTO_Do_It:_An_Outline
Ugh. That is WAY out of date.
> But when I try to do the connection, it never ends... and I get peridical
> messeges at the FreeRadius server ouput in this way...
...
> Sending Access-Challenge of id 2 to 160.103.180.252 port 32769
> EAP-Message = 0x0105000a0d8000000000
> Message-Authenticator = 0x00000000000000000000000000000000
> State = 0x09770a67d71842c41d63756db81b29fc
> Finished request 2
> Going to the next request
> Waking up in 6 seconds...
> -------------------------------------
>
> Any ideas what i'm doing wrong?
This is in the FAQ and in the comments in eap.conf.
The certificates don't have the "magic" OID values. OR, the client
doesn't have the CA certificate.
I've corrected the Wiki page by deleting most of it. Much of it is
simply unnecessary in 2.x.
See also http://deployingradius.com/. My web pages contain detailed
instructions for getting EAP to work.
Alan DeKok.
More information about the Freeradius-Users
mailing list