EAP-sim using freeradius
Siddharth Katragadda
siddharthk at google.com
Wed Aug 12 21:25:34 CEST 2015
Hi Alan,
For the format, I did try this:
format = "*IMSI:RAND:SRES:KC"
I assumed for EAP-SIM, the IMSI is the key attribute and the triplet of
RAND:SRES:KC will be the password??
I get the following error:
rlm_passwd: unable to resolve attribute IMSI
I tried to lookup the corr. attribute names for IMSI, Rand, Sres, KC on
the Freeradius Attribute RFC but couldn't find them:
http://freeradius.org/rfc/attributes.html
Can you please help me define the "format" for EAP-SIM passwd file
Thanks
Sid
On Wed, Aug 12, 2015 at 12:19 AM, Alan DeKok <aland at deployingradius.com>
wrote:
> On Aug 11, 2015, at 11:38 PM, Siddharth Katragadda via Freeradius-Users <
> freeradius-users at lists.freeradius.org> wrote:
> > I had a question about EAP-SIM. We previously got EAP-SIM to work on the
> > Free-radius version 2. But once we upgraded to 3.0, we saw the
> > rlm_sim_files has been deprecated and now we need to use rlm_passwd.
>
> Or anything else. The passwd module can read simple files, which is
> pretty much what sim_files did.
>
> > 2. Changed passwd file under mods-enabled:
> > passwd passwd {
> > filename = /usr/local/etc/raddb/simtriplets.dat
> > format = "*User-Name:User-Password"
>
> That won't work. You need to make sure that the data file is formatted
> in a way the "passwd" module likes. Then, ensure that the "format" string
> for the passwd module reads the SIM triplets from the correct field.
>
> Here, you've told it to "look up User-Name, and get the User-Password"
> from the file. That clearly isn't what you want.
>
> So... read the passwd documentation, and fix the "format" line to have
> the names of the SIM triplet attributes.
>
> Alan DeKok.
>
>
More information about the Freeradius-Users
mailing list