Brian Julin <BJulin@clarku.edu> w dniu 09.09.2019, o godz. 16:08:
Is it possible that this is the first device that you have used on you network that actually does fast reauthentication? Many devices won't unless you tell them to.
I don’t think so, tlscache folder was already populated with files as below: 053bc53f44fec1d1539f3ddcb989f59c994cae4d6fa5363a876166d24f29b27a.asn1 053bc53f44fec1d1539f3ddcb989f59c994cae4d6fa5363a876166d24f29b27a.vps 117451d0acd2c340d0b32ffc5af16e6bd8e915dbedc3c99fd72e9c9f332cb01f.asn1 117451d0acd2c340d0b32ffc5af16e6bd8e915dbedc3c99fd72e9c9f332cb01f.vps And so on…
eapol_test can be used to test fast reauthentication, you just have to do a bit of mangling of the output to find the attributes that the server is sending during a fast-reauthentication versus the ones it gets on the first authentication:
Thanks for a hint, at first I’ll redo tests with said device and then try to use eapol_test. I’ll post debug and maybe you’ll see something in it what I’ve overlooked. Martin