Okay folks, I appreciate the help. Already managed to solve.

Basically there were two details, the first was as the supplicant was trying to authenticate, it was either use MSCHAPv2, but the passwords were encrypted at the base with MD5, just like CHAP authentication would not work. By forcing the supplicant to use TTLS + PAP, the authentication worked.

I thank you all.


2011/3/17 Alan Buxey <A.L.M.Buxey@lboro.ac.uk>
Hi,
>    Dear Phil,
>
>    By removing this option, it tries to authenticate with EAP/MSCHAPv2, and
>    also fails.

no...it works - but you havent got the 'sql' module enabled in the inner-tunnel
(which is where the server goes to when its doing EAP)

put sql into the inner-tunnel virtual-server and then the password
will be exposed in the EAP tunnel...et voila, it will work(tm)

alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



--
João Paulo de Lima Barbosa
Fone: (45) 9938-8399
Blog: http://joao.us
Twitter: @joaocdc

"O erro dos que tem poder é colocar barreiras para que ninguém os alcance, incentivando-nos a buscar todas as formas que encontramos para alcança-los."