EAP-sim using freeradius

Thu Aug 13 18:49:58 CEST 2015

Hi Alan,
Anything on this?
Thanks
SId

On Wed, Aug 12, 2015 at 12:25 PM, Siddharth Katragadda <
siddharthk at google.com> wrote:

> Hi Alan,
>
> For the format, I did try this:
>
> format = "*IMSI:RAND:SRES:KC"
>
> I assumed for EAP-SIM, the IMSI is the key attribute and the triplet of
> RAND:SRES:KC will be the password??
>
> I get the following error:
> rlm_passwd: unable to resolve attribute IMSI
>
> I tried to lookup the corr. attribute names for IMSI, Rand, Sres, KC  on
> the Freeradius Attribute RFC but couldn't find them:
> http://freeradius.org/rfc/attributes.html
>
> Can you please help me define the "format" for EAP-SIM passwd file
>
> Thanks
> Sid
>
>
> On Wed, Aug 12, 2015 at 12:19 AM, Alan DeKok <aland at deployingradius.com>
> wrote:
>
>> On Aug 11, 2015, at 11:38 PM, Siddharth Katragadda via Freeradius-Users <
>> freeradius-users at lists.freeradius.org> wrote:
>> > I had a question about EAP-SIM. We previously got EAP-SIM to work on the
>> > Free-radius version 2.  But once we upgraded to 3.0,  we saw the
>> > rlm_sim_files has been deprecated and now we need to use rlm_passwd.
>>
>>   Or anything else.  The passwd module can read simple files, which is
>> pretty much what sim_files did.
>>
>> > 2. Changed passwd file under mods-enabled:
>> > passwd passwd {
>> > filename = /usr/local/etc/raddb/simtriplets.dat
>> > format = "*User-Name:User-Password"
>>
>>   That won't work.  You need to make sure that the data file is formatted
>> in a way the "passwd" module likes.  Then, ensure that the "format" string
>> for the passwd module reads the SIM triplets from the correct field.
>>
>>   Here, you've told it to "look up User-Name, and get the User-Password"
>> from the file.  That clearly isn't what you want.
>>
>>   So... read the passwd documentation, and fix the "format" line to have
>> the names of the SIM triplet attributes.
>>
>>   Alan DeKok.
>>
>>
>