On Thu, Mar 26, 2015 at 12:51:06PM -0400, Adam Schappell wrote:
Ok I figured all that out, supposivly does not like the AP's connecting to different subnets which is not going to go over well with my DMZ. But now I am getting reject error when authenticating to wifi. Here is debug output.
[peap] Got inner identity 'CORP\aschappell' [peap] Setting default EAP type for tunneled EAP session. [peap] Got tunneled request EAP-Message = 0x0217001401434f52505c61736368617070656c6c server { [peap] Setting User-Name to CORP\aschappell Sending tunneled request EAP-Message = 0x0217001401434f52505c61736368617070656c6c FreeRADIUS-Proxied-To = 127.0.0.1 User-Name = "CORP\\aschappell" server inner-tunnel { WARNING: Empty authorize section. Using default return values.
^^^^^^^^^^^^^^ Did you empty out the authorize {} section in sites-enabled/inner-tunnel? Is the inner-tunnel virtual server actually there (symlink in sites-enabled pointing back to sites-available)? Matthew
ERROR: No authenticate method (Auth-Type) found for the request: Rejecting the user Failed to authenticate the user. Login incorrect: [CORP\\aschappell] (from client ClearEdge port 0 via TLS tunnel) } # server inner-tunnel
-- Matthew Newton, Ph.D. <mcn4@le.ac.uk> Systems Specialist, Infrastructure Services, I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom For IT help contact helpdesk extn. 2253, <ithelp@le.ac.uk>