So Can I ask a question: what is the link between the attributes filter in Access-Challenge packets and the EAP type? You mean I can't do it in EAP-MD5 but only in other EAP types? 在2010-05-26 17:08:54,"Alan Buxey" <A.L.M.Buxey@lboro.ac.uk> 写道:
Hi,
在2010-05-26 16:50:15,"Alan Buxey" <A.L.M.Buxey@lboro.ac.uk> 写道: >Hi, >> Anyone who knows this problem can help to check about the problem? >> Thanks! > >your server hasnt been built with full EAP support - the debug says so (read the >lines about PEAP/TTLS etc - installed the openssl-devel stuff and rebuild.
however, I installed it under my ubuntu. Why the debug says that? I think it is because I use EAPMD5 here to test.
because debian-based systems are very fussy about OpenSSL and licencing/building - check the mailing list archives for literally HUNDREDS of similar cases. the debug doesnt lie. if it says it doesnt have EAP support, then it doesnt. you need to use a proper EAP method to activate the tunnel functions - EAP-MD5 really isnt upt o much at all.
just use eg eapol_test (part of wpa_supplicant) to do a proper PEAP or EAP-TTLS test!
alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html