<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.5512" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Hello,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I am new to Freeradius world. Last two days trying
to use Freeradius + Alcon AP WPA-Enterprise + Windows XP.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I installed FreeBSD 7.2-STABL with Freeradius 2.1.4
and configured it.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I followed instruction on <A
href="http://wiki.freeradius.org/index.php?title=EAP-PEAP&redirect=no">http://wiki.freeradius.org/index.php?title=EAP-PEAP&redirect=no</A> and
<A
href="http://ubuntuforums.org/showthread.php?t=478804">http://ubuntuforums.org/showthread.php?t=478804</A></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I have 2 WLAN card on my Windows XP
laptop.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>After successfully install,configure
freebsd/freeradius/AP and Windows XP.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>1.My Linksys WPC300N WLAN card can connect to AP
using PEAP/MS-CHAPv2.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>2.But Intel PRO/Wireless 3945ABG card can't get
connect, I tried many different way. First I tried Windows XP with SP2, then
installed SP3 and all time same result.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>I captured Freeradius debugging
information.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>1.Linksys</FONT></DIV>
<DIV><FONT face=Arial size=2>========</FONT></DIV>
<DIV><FONT face=Arial size=2>Please find second my email. Because maximum
mailing-list size is 100K.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>2.Intel PRO/Wireless 3945ABG</FONT></DIV>
<DIV><FONT face=Arial size=2>=======================</FONT></DIV>
<DIV><FONT face=Arial size=2>.rad_recv: Access-Request packet from host
10.0.1.254 port 1077, id=0,
length=176<BR> Message-Authenticator =
0xa0ca47a1b7294a8b23ae201660398ec5<BR>
Service-Type = Framed-User<BR>
User-Name = "test"<BR> Framed-MTU =
1488<BR> Called-Station-Id =
"00-C0-A8-ED-84-11:CSMS"<BR>
Calling-Station-Id =
"00-1B-77-3D-97-CB"<BR> NAS-Identifier
= "AP CSMS"<BR> NAS-Port-Type =
Wireless-802.11<BR> Connect-Info =
"CONNECT 54Mbps 802.11g"<BR>
EAP-Message = 0x020000090174657374<BR>
NAS-IP-Address = 10.0.1.254<BR>
NAS-Port = 1<BR> NAS-Port-Id = "STA
port # 1"<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authorize
{...}<BR>Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok<BR>Sat May
23 06:12:59 2009 : Info: ++[chap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: ++[mschap] returns noop<BR>Sat May 23 06:12:59 2009 : Info: [suffix] No <A
href="mailto:'@'">'@'</A> in User-Name = "test", looking up realm NULL<BR>Sat
May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"<BR>Sat May 23
06:12:59 2009 : Info: ++[suffix] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: [eap] EAP packet type response id 0 length 9<BR>Sat May 23 06:12:59 2009 :
Info: [eap] No EAP Start, assuming it's an on-going EAP conversation<BR>Sat May
23 06:12:59 2009 : Info: ++[eap] returns updated<BR>Sat May 23 06:12:59 2009 :
Info: ++[unix] returns notfound<BR>Sat May 23 06:12:59 2009 : Info: [files]
users: Matched entry test at line 206<BR>Sat May 23 06:12:59 2009 : Info:
++[files] returns ok<BR>Sat May 23 06:12:59 2009 : Info: ++[expiration] returns
noop<BR>Sat May 23 06:12:59 2009 : Info: ++[logintime] returns noop<BR>Sat May
23 06:12:59 2009 : Info: [pap] Found existing Auth-Type, not changing it.<BR>Sat
May 23 06:12:59 2009 : Info: ++[pap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: Found Auth-Type = EAP<BR>Sat May 23 06:12:59 2009 : Info: +- entering
group authenticate {...}<BR>Sat May 23 06:12:59 2009 : Info: [eap] EAP
Identity<BR>Sat May 23 06:12:59 2009 : Info: [eap] processing type tls<BR>Sat
May 23 06:12:59 2009 : Info: [tls] Initiate<BR>Sat May 23 06:12:59 2009 : Info:
[tls] Start returned 1<BR>Sat May 23 06:12:59 2009 : Info: ++[eap] returns
handled<BR>Sending Access-Challenge of id 0 to 10.0.1.254 port
1077<BR> EAP-Message =
0x010100061920<BR>
Message-Authenticator =
0x00000000000000000000000000000000<BR>
State = 0xab2d012bab2c18f6df82958be47c8d15<BR>Sat May 23 06:12:59 2009 : Info:
Finished request 65.<BR>Sat May 23 06:12:59 2009 : Debug: Going to the next
request<BR>Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9
seconds.<BR>rad_recv: Access-Request packet from host 10.0.1.254 port 1077,
id=1, length=265<BR>
Message-Authenticator =
0xf38fba12d0d8983cafc03c4357006b1b<BR>
Service-Type = Framed-User<BR>
User-Name = "test"<BR> Framed-MTU =
1488<BR> State =
0xab2d012bab2c18f6df82958be47c8d15<BR>
Called-Station-Id =
"00-C0-A8-ED-84-11:CSMS"<BR>
Calling-Station-Id =
"00-1B-77-3D-97-CB"<BR> NAS-Identifier
= "AP CSMS"<BR> NAS-Port-Type =
Wireless-802.11<BR> Connect-Info =
"CONNECT 54Mbps 802.11g"<BR>
EAP-Message =
0x0201005019800000004616030100410100003d03014a17236630b686d1813e3c6999ff6c9c2bb7411a01b4b1b77582d0dd45012ae300001600040005000a000900640062000300060013001200630100<BR>
NAS-IP-Address = 10.0.1.254<BR>
NAS-Port = 1<BR> NAS-Port-Id = "STA
port # 1"<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authorize
{...}<BR>Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok<BR>Sat May
23 06:12:59 2009 : Info: ++[chap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: ++[mschap] returns noop<BR>Sat May 23 06:12:59 2009 : Info: [suffix] No <A
href="mailto:'@'">'@'</A> in User-Name = "test", looking up realm NULL<BR>Sat
May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"<BR>Sat May 23
06:12:59 2009 : Info: ++[suffix] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: [eap] EAP packet type response id 1 length 80<BR>Sat May 23 06:12:59 2009
: Info: [eap] Continuing tunnel setup.<BR>Sat May 23 06:12:59 2009 : Info:
++[eap] returns ok<BR>Sat May 23 06:12:59 2009 : Info: Found Auth-Type =
EAP<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authenticate
{...}<BR>Sat May 23 06:12:59 2009 : Info: [eap] Request found, released from the
list<BR>Sat May 23 06:12:59 2009 : Info: [eap] EAP/peap<BR>Sat May 23 06:12:59
2009 : Info: [eap] processing type peap<BR>Sat May 23 06:12:59 2009 : Info:
[peap] processing EAP-TLS<BR>Sat May 23 06:12:59 2009 : Debug: TLS
Length 70<BR>Sat May 23 06:12:59 2009 : Info: [peap] Length Included<BR>Sat May
23 06:12:59 2009 : Info: [peap] eaptls_verify returned 11<BR>Sat May 23 06:12:59
2009 : Info: [peap] (other): before/accept
initialization<BR>Sat May 23 06:12:59 2009 : Info:
[peap] TLS_accept: before/accept initialization<BR>Sat
May 23 06:12:59 2009 : Info: [peap] <<< TLS 1.0 Handshake [length
0041], ClientHello<BR>Sat May 23 06:12:59 2009 : Info:
[peap] TLS_accept: SSLv3 read client hello A<BR>Sat May
23 06:12:59 2009 : Info: [peap] >>> TLS 1.0 Handshake [length 002a],
ServerHello<BR>Sat May 23 06:12:59 2009 : Info: [peap]
TLS_accept: SSLv3 write server hello A<BR>Sat May 23 06:12:59 2009 : Info:
[peap] >>> TLS 1.0 Handshake [length 0818], Certificate<BR>Sat May 23
06:12:59 2009 : Info: [peap] TLS_accept: SSLv3 write
certificate A<BR>Sat May 23 06:12:59 2009 : Info: [peap] >>> TLS 1.0
Handshake [length 0004], ServerHelloDone<BR>Sat May 23 06:12:59 2009 : Info:
[peap] TLS_accept: SSLv3 write server done A<BR>Sat May
23 06:12:59 2009 : Info: [peap] TLS_accept: SSLv3 flush
data<BR>Sat May 23 06:12:59 2009 : Info: [peap]
TLS_accept: Need to read more data: SSLv3 read client certificate A<BR>Sat May
23 06:12:59 2009 : Debug: In SSL Handshake Phase<BR>Sat May 23 06:12:59 2009 :
Debug: In SSL Accept mode<BR>Sat May 23 06:12:59 2009 : Info: [peap]
eaptls_process returned 13<BR>Sat May 23 06:12:59 2009 : Info: [peap]
EAPTLS_HANDLED<BR>Sat May 23 06:12:59 2009 : Info: ++[eap] returns
handled<BR>Sending Access-Challenge of id 1 to 10.0.1.254 port
1077<BR> EAP-Message =
0x0102040019c000000855160301002a0200002603014a17236b41fb4453090eaddd0875ba0824f11887113654d3439aaabac6b367d70000040016030108180b0008140008110003903082038c30820274a003020102020101300d06092a864886f70d0101040500308183310b3009060355040613024d4e310b3009060355040813025542311430120603550407130b556c61616e6261617461723111300f060355040a1308486f6d656e65742e311f301d06092a864886f70d010901161074736565656b407961686f6f2e636f6d311d301b0603550403131454736572656e646f726a20617574686f72697479301e170d303930353232303131353138<BR>
EAP-Message =
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<BR>
EAP-Message =
0xfe2e02e865530ad0e174d309e79164ce2ab8df0a7c676155022f298a0014bab98b68e23a06cf939d9c6b53fab8cb7b123df2b751a700ae1b12129cd05dcc6110c8b89f9b467142874b7249ae442d1680700f96ea69f511c388f198869375b1e86af0e4320dc81e6ec5dfa88817fef561b6c69561e6200412327b72d5915c9c292eaa2f4914c0ca4a102bd1ba198aa3224e20e8c635f9b4131042955409ab565377e64b005bf7ffd6db0af64f0203010001a317301530130603551d25040c300a06082b06010505070301300d06092a864886f70d0101040500038201010015a7d2ade3e88c984c89476f7823e6e178e82374fb9716b8aaae950f1d2040<BR>
EAP-Message =
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<BR>
EAP-Message =
0x0d06092a864886f70d010105<BR>
Message-Authenticator =
0x00000000000000000000000000000000<BR>
State = 0xab2d012baa2f18f6df82958be47c8d15<BR>Sat May 23 06:12:59 2009 : Info:
Finished request 66.<BR>Sat May 23 06:12:59 2009 : Debug: Going to the next
request<BR>Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9
seconds.<BR>rad_recv: Access-Request packet from host 10.0.1.254 port 1077,
id=2, length=191<BR>
Message-Authenticator =
0xe998fa0f52f462e1a8b21e3ec7f5c049<BR>
Service-Type = Framed-User<BR>
User-Name = "test"<BR> Framed-MTU =
1488<BR> State =
0xab2d012baa2f18f6df82958be47c8d15<BR>
Called-Station-Id =
"00-C0-A8-ED-84-11:CSMS"<BR>
Calling-Station-Id =
"00-1B-77-3D-97-CB"<BR> NAS-Identifier
= "AP CSMS"<BR> NAS-Port-Type =
Wireless-802.11<BR> Connect-Info =
"CONNECT 54Mbps 802.11g"<BR>
EAP-Message = 0x020200061900<BR>
NAS-IP-Address = 10.0.1.254<BR>
NAS-Port = 1<BR> NAS-Port-Id = "STA
port # 1"<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authorize
{...}<BR>Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok<BR>Sat May
23 06:12:59 2009 : Info: ++[chap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: ++[mschap] returns noop<BR>Sat May 23 06:12:59 2009 : Info: [suffix] No <A
href="mailto:'@'">'@'</A> in User-Name = "test", looking up realm NULL<BR>Sat
May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"<BR>Sat May 23
06:12:59 2009 : Info: ++[suffix] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: [eap] EAP packet type response id 2 length 6<BR>Sat May 23 06:12:59 2009 :
Info: [eap] Continuing tunnel setup.<BR>Sat May 23 06:12:59 2009 : Info: ++[eap]
returns ok<BR>Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP<BR>Sat May
23 06:12:59 2009 : Info: +- entering group authenticate {...}<BR>Sat May 23
06:12:59 2009 : Info: [eap] Request found, released from the list<BR>Sat May 23
06:12:59 2009 : Info: [eap] EAP/peap<BR>Sat May 23 06:12:59 2009 : Info: [eap]
processing type peap<BR>Sat May 23 06:12:59 2009 : Info: [peap] processing
EAP-TLS<BR>Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK<BR>Sat May
23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler<BR>Sat May 23
06:12:59 2009 : Info: [peap] eaptls_verify returned 1<BR>Sat May 23 06:12:59
2009 : Info: [peap] eaptls_process returned 13<BR>Sat May 23 06:12:59 2009 :
Info: [peap] EAPTLS_HANDLED<BR>Sat May 23 06:12:59 2009 : Info: ++[eap] returns
handled<BR>Sending Access-Challenge of id 2 to 10.0.1.254 port
1077<BR> EAP-Message =
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<BR>
EAP-Message =
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<BR>
EAP-Message =
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<BR>
EAP-Message =
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<BR>
EAP-Message = 0xe78e4d77cbec2fb9<BR>
Message-Authenticator =
0x00000000000000000000000000000000<BR>
State = 0xab2d012ba92e18f6df82958be47c8d15<BR>Sat May 23 06:12:59 2009 : Info:
Finished request 67.<BR>Sat May 23 06:12:59 2009 : Debug: Going to the next
request<BR>Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9
seconds.<BR>rad_recv: Access-Request packet from host 10.0.1.254 port 1077,
id=3, length=191<BR>
Message-Authenticator =
0xdd87b957079c3f4f81b4c7a5ba4be6d6<BR>
Service-Type = Framed-User<BR>
User-Name = "test"<BR> Framed-MTU =
1488<BR> State =
0xab2d012ba92e18f6df82958be47c8d15<BR>
Called-Station-Id =
"00-C0-A8-ED-84-11:CSMS"<BR>
Calling-Station-Id =
"00-1B-77-3D-97-CB"<BR> NAS-Identifier
= "AP CSMS"<BR> NAS-Port-Type =
Wireless-802.11<BR> Connect-Info =
"CONNECT 54Mbps 802.11g"<BR>
EAP-Message = 0x020300061900<BR>
NAS-IP-Address = 10.0.1.254<BR>
NAS-Port = 1<BR> NAS-Port-Id = "STA
port # 1"<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authorize
{...}<BR>Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok<BR>Sat May
23 06:12:59 2009 : Info: ++[chap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: ++[mschap] returns noop<BR>Sat May 23 06:12:59 2009 : Info: [suffix] No <A
href="mailto:'@'">'@'</A> in User-Name = "test", looking up realm NULL<BR>Sat
May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"<BR>Sat May 23
06:12:59 2009 : Info: ++[suffix] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: [eap] EAP packet type response id 3 length 6<BR>Sat May 23 06:12:59 2009 :
Info: [eap] Continuing tunnel setup.<BR>Sat May 23 06:12:59 2009 : Info: ++[eap]
returns ok<BR>Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP<BR>Sat May
23 06:12:59 2009 : Info: +- entering group authenticate {...}<BR>Sat May 23
06:12:59 2009 : Info: [eap] Request found, released from the list<BR>Sat May 23
06:12:59 2009 : Info: [eap] EAP/peap<BR>Sat May 23 06:12:59 2009 : Info: [eap]
processing type peap<BR>Sat May 23 06:12:59 2009 : Info: [peap] processing
EAP-TLS<BR>Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK<BR>Sat May
23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler<BR>Sat May 23
06:12:59 2009 : Info: [peap] eaptls_verify returned 1<BR>Sat May 23 06:12:59
2009 : Info: [peap] eaptls_process returned 13<BR>Sat May 23 06:12:59 2009 :
Info: [peap] EAPTLS_HANDLED<BR>Sat May 23 06:12:59 2009 : Info: ++[eap] returns
handled<BR>Sending Access-Challenge of id 3 to 10.0.1.254 port
1077<BR> EAP-Message =
0x0104006f1900dffe3ea966d2f1d6b3f53ff8d7aca3209d32404ff2ea681dfe4e453405f0b9de3eee8c146c2e3ba3dcae73743550c267bc22ca8c9cb6da0d1b78606e707f17f535a4fda33aa48734e794b5e8c345dbe48a9715de963d83ae51473edcafff79bf16030100040e000000<BR>
Message-Authenticator =
0x00000000000000000000000000000000<BR>
State = 0xab2d012ba82918f6df82958be47c8d15<BR>Sat May 23 06:12:59 2009 : Info:
Finished request 68.<BR>Sat May 23 06:12:59 2009 : Debug: Going to the next
request<BR>Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9
seconds.<BR>rad_recv: Access-Request packet from host 10.0.1.254 port 1077,
id=4, length=191<BR>
Message-Authenticator =
0x1a9c69cd9f1a6a400346442e1b1da646<BR>
Service-Type = Framed-User<BR>
User-Name = "test"<BR> Framed-MTU =
1488<BR> State =
0xab2d012ba82918f6df82958be47c8d15<BR>
Called-Station-Id =
"00-C0-A8-ED-84-11:CSMS"<BR>
Calling-Station-Id =
"00-1B-77-3D-97-CB"<BR> NAS-Identifier
= "AP CSMS"<BR> NAS-Port-Type =
Wireless-802.11<BR> Connect-Info =
"CONNECT 54Mbps 802.11g"<BR>
EAP-Message = 0x020400061900<BR>
NAS-IP-Address = 10.0.1.254<BR>
NAS-Port = 1<BR> NAS-Port-Id = "STA
port # 1"<BR>Sat May 23 06:12:59 2009 : Info: +- entering group authorize
{...}<BR>Sat May 23 06:12:59 2009 : Info: ++[preprocess] returns ok<BR>Sat May
23 06:12:59 2009 : Info: ++[chap] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: ++[mschap] returns noop<BR>Sat May 23 06:12:59 2009 : Info: [suffix] No <A
href="mailto:'@'">'@'</A> in User-Name = "test", looking up realm NULL<BR>Sat
May 23 06:12:59 2009 : Info: [suffix] No such realm "NULL"<BR>Sat May 23
06:12:59 2009 : Info: ++[suffix] returns noop<BR>Sat May 23 06:12:59 2009 :
Info: [eap] EAP packet type response id 4 length 6<BR>Sat May 23 06:12:59 2009 :
Info: [eap] Continuing tunnel setup.<BR>Sat May 23 06:12:59 2009 : Info: ++[eap]
returns ok<BR>Sat May 23 06:12:59 2009 : Info: Found Auth-Type = EAP<BR>Sat May
23 06:12:59 2009 : Info: +- entering group authenticate {...}<BR>Sat May 23
06:12:59 2009 : Info: [eap] Request found, released from the list<BR>Sat May 23
06:12:59 2009 : Info: [eap] EAP/peap<BR>Sat May 23 06:12:59 2009 : Info: [eap]
processing type peap<BR>Sat May 23 06:12:59 2009 : Info: [peap] processing
EAP-TLS<BR>Sat May 23 06:12:59 2009 : Info: [peap] Received TLS ACK<BR>Sat May
23 06:12:59 2009 : Info: [peap] ACK handshake fragment handler<BR>Sat May 23
06:12:59 2009 : Info: [peap] eaptls_verify returned 1<BR>Sat May 23 06:12:59
2009 : Info: [peap] eaptls_process returned 13<BR>Sat May 23 06:12:59 2009 :
Info: [peap] EAPTLS_HANDLED<BR>Sat May 23 06:12:59 2009 : Info: ++[eap] returns
handled<BR>Sending Access-Challenge of id 4 to 10.0.1.254 port
1077<BR> EAP-Message =
0x010500061900<BR>
Message-Authenticator =
0x00000000000000000000000000000000<BR>
State = 0xab2d012baf2818f6df82958be47c8d15<BR>Sat May 23 06:12:59 2009 : Info:
Finished request 69.<BR>Sat May 23 06:12:59 2009 : Debug: Going to the next
request<BR>Sat May 23 06:12:59 2009 : Debug: Waking up in 4.9 seconds.<BR>Sat
May 23 06:13:04 2009 : Info: Cleaning up request 65 ID 0 with timestamp
+715<BR>Sat May 23 06:13:04 2009 : Info: Cleaning up request 66 ID 1 with
timestamp +715<BR>Sat May 23 06:13:04 2009 : Info: Cleaning up request 67 ID 2
with timestamp +715<BR>Sat May 23 06:13:04 2009 : Info: Cleaning up request 68
ID 3 with timestamp +715<BR>Sat May 23 06:13:04 2009 : Info: Cleaning up request
69 ID 4 with timestamp +715<BR>Sat May 23 06:13:04 2009 : Debug: Ready to
process requests.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2>3.site-enabled/default</FONT></DIV>
<DIV><FONT face=Arial size=2>================</FONT></DIV>
<DIV><FONT face=Arial size=2>authorize
{<BR> preprocess</FONT></DIV>
<DIV><FONT face=Arial size=2>
chap</FONT></DIV>
<DIV><FONT face=Arial size=2>
mschap<BR> eap
{<BR>
ok = return<BR>
}<BR> files</FONT></DIV>
<DIV><FONT face=Arial size=2>
pap</FONT></DIV>
<DIV><FONT face=Arial size=2>authenticate</FONT></DIV>
<DIV><FONT face=Arial size=2>
.</FONT></DIV>
<DIV><FONT face=Arial size=2>
.</FONT></DIV>
<DIV><FONT face=Arial size=2>
.</FONT></DIV>
<DIV><FONT face=Arial size=2> Auth-Type
MS-CHAP {</FONT></DIV>
<DIV><FONT face=Arial size=2>
mschap</FONT></DIV>
<DIV><FONT face=Arial size=2>
}</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>4.eap.conf</FONT></DIV>
<DIV><FONT face=Arial size=2>========</FONT></DIV>
<DIV><FONT face=Arial size=2>eap {</FONT></DIV>
<DIV><FONT face=Arial size=2>
default_eap_type = peap</FONT></DIV>
<DIV><FONT face=Arial size=2> .</FONT></DIV>
<DIV><FONT face=Arial size=2> .</FONT></DIV>
<DIV><FONT face=Arial size=2> .</FONT></DIV>
<DIV><FONT face=Arial size=2>tls { </FONT></DIV>
<DIV><FONT face=Arial size=2> .</FONT></DIV>
<DIV><FONT face=Arial size=2> .</FONT></DIV>
<DIV><FONT face=Arial size=2> }</FONT></DIV>
<DIV><FONT face=Arial size=2>check_cert_cn = %{User-Name}</FONT></DIV>
<DIV><FONT face=Arial size=2>peap
{<BR>
default_eap_type = mschapv2</FONT></DIV>
<DIV><FONT face=Arial
size=2>
copy_request_to_tunnel =
no<BR>
use_tunneled_reply = no<BR>}</FONT></DIV>
<DIV><FONT face=Arial
size=2>
mschapv2 {<BR> authtype = MS-CHAP</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2> use_mppe =
yes</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2> require_encryption =
yes</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=Arial size=2> require_strong =
yes<BR>}</FONT></DIV>
<DIV><FONT face=Arial size=2>}</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>5.users</FONT></DIV>
<DIV><FONT face=Arial size=2>======</FONT></DIV>
<DIV><FONT face=Arial
size=2>test
Cleartext-Password := "test"<BR></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Is there anything wrong with configuration
or?</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>My guess is Windows XP wireless client sofware
didn't respond to Freeradius Access-Challenge request, but Linksys client
software doing well.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2>Any suggestion?</FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT size=2></FONT></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2></FONT></FONT> </DIV>
<DIV><FONT face=Arial><FONT size=2>Thanks,</FONT></FONT></DIV>
<DIV><FONT face=Arial><FONT size=2>Balgaa</FONT></DIV></FONT></BODY></HTML>