MS-CHAP-V2 with no retry
James J J Hooper
jjj.hooper at bristol.ac.uk
Sun Apr 10 13:39:50 CEST 2011
On 10/04/2011 12:16, James J J Hooper wrote:
> On 10/04/2011 07:03, Alan DeKok wrote:
>> James J J Hooper wrote:
>>> I've may have mis-understood the code, but I think the EAP MS-CHAP-v2
>>> Failure packet, should be an EAP *request* (currently it's EAP failure)??
>>
>> Yes, thanks.
>
>
> Also, args to pairmove2 are wrong way around, as attached.
>
After that last change (p4.txt.gz), I think it's now doing the right thing:
* wpa_supplicant output matches Phil's (against W2k8 NPS), with the
exception that M=... is always present.
* With allow_retry = no, XP pop's up the usual 'enter credentials...'
bubble, and box.
* With allow_retry = yes, XP pops a "click to process credentials" bubble,
then a "type your password again" box:
http://www.wireless.bris.ac.uk/gfx/random/xp--retry-is-yes.png
-James
--
James J J Hooper
Network Specialist, University of Bristol
http://www.wireless.bristol.ac.uk
--
More information about the Freeradius-Users
mailing list