I am sorry, I gave you wrong debug,<br><br>whatever is marked or unmarked on checkbox <br>local connection->authentication->keep in memory information about users for aditional network connection <br>server does not have any new lines in debug, like nothing happend at all.<br>
<br><br><br><div class="gmail_quote">On Thu, May 14, 2009 at 2:24 PM, Bartosz Chodzinski <span dir="ltr"><<a href="mailto:bartosz.c@gmail.com">bartosz.c@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="im">>>What "doesn't work"? Post the debug.<br></div>server: <br>I dont change in my config file, is the same like in first message,<br><br>client (win xp): <br>I have local connection->authentication->method->eap(peap)->properties: <br>
validate server cert (marked checkbox), <br> marked cacert.pem,<br> secured password eap-mschapv2 - use my windows logon<br><br>it work's properly, but only with correct user/pass in /etc/freeradius/users file<br>
<br>now I change<br>local connection->authentication->method->smart card or other certificate->properities:<br>
validate server cert (marked checkbox), <br>
marked cacert.pem,<br>
local connection->authentication->keep in memory inf about users for aditional network connection (unmarked checkbox - when marked nothing happend at all)<br><br>debug<div class="im"><br><br>Listening on authentication *:1812<br>
Listening on accounting *:1813<br>
Ready to process requests.<br></div>rad_recv: Access-Request packet from host <a href="http://192.168.5.206:1812" target="_blank">192.168.5.206:1812</a>, id=37, length=159<div class="im"><br> NAS-IP-Address = 192.168.5.206<br>
NAS-Port = 50046<br>
NAS-Port-Type = Ethernet<br> User-Name = "PC-01\\Administrator"<br> Called-Station-Id = "00-0C-30-81-9B-EE"<br> Calling-Station-Id = "00-0A-E4-13-1A-02"<br> Service-Type = Framed-User<br>
Framed-MTU = 1500<br> EAP-Message = 0x0200001b014e4c504c2d4943455c41646d696e6973747261746f72<br></div> Message-Authenticator = 0x2430d7c8a84cc54874addee9104cf076<br>rlm_eap: Identity does not match User-Name, setting from EAP Identity.<br>
Sending Access-Reject of id 37 to 192.168.5.206 port 1812<br><br>
</blockquote></div><br>