Thanks Alan. After installing openssl development package, libssl-dev, for ubuntu 10.10, and recompiling freeradius. I now have PEAP MSCHAPv2 working, client connecting good. Though LEAP still not working (with same id/pw), but I will figure out that later and play with certificates stuffs first. Thanks, David On Fri, Oct 29, 2010 at 4:35 PM, David Jea <dcjea.ee@gmail.com> wrote:
ah.... but this is LEAP I am testing, which does not require OPENSSL support. In wiki page, http://wiki.freeradius.org/Rlm_eap
======= INSTALLATION
EAP, EAP-MD5, and Cisco *LEAP* do not require any additional packages. * FreeRADIUS* <http://wiki.freeradius.org/FreeRADIUS> contains all the required packages.
For EAP-TLS, *OPENSSL* <http://www.openssl.org/> is required to be installed. Any version from 0.9.7, should fairly work with this module.
=======
Which seems to suggest that OPENSSL is not required for LEAP.
I appreciate the feedback, I am actually looking for exactly what you have pointed out:
if the former, then instaleld the openssl-devel or ssl-dev packages (name depends on distro) and rebuild.
Thanks, David
On Fri, Oct 29, 2010 at 3:56 PM, Alan Buxey <A.L.M.Buxey@lboro.ac.uk>wrote:
Hi,
Hmmm. probably not the case, here is my 'users' file:
isnt it a little more obvious than that?
> Ignoring EAP-Type/tls because we do not have OpenSSL support. > Ignoring EAP-Type/ttls because we do not have OpenSSL support. > Ignoring EAP-Type/peap because we do not have OpenSSL support.
you built the FreeRADIUS yourself - or installed via a package manager? if the former, then instaleld the openssl-devel or ssl-dev packages (name depends on distro) and rebuild. if the latter - then ensure you have the required OpenSSL support version or extra bits (some distros split it into umpteen bits)
alan