Freeradius I have installed last version available (1.1.2 that it seems to work!) but I know that there is also an August version SNAPSHOT but to me it has given problems in compile and did not install me module EAP-TLS (bug Debian). The lib I have installed to them with the command apt-get install openssl libssl-dev and this is the command dphg - l|grep SSL ii libflac++5c2 1.1.2-1ubuntu2 Free Lossless Audio Codec - C++ runtime libr ii libflac7 1.1.2-1ubuntu2 Free Lossless Audio Codec - runtime C librar ii liboggflac3 1.1.2-1ubuntu2 Free Lossless Audio Codec - runtime C librar ii libssl-dev 0.9.7g-1ubuntu1.1 SSL development libraries, header files and ii libssl0.9.7 0.9.7g-1ubuntu1.1 SSL shared libraries ii libwww-ssl0 5.4.0-9ubuntu0.5.10 The W3C-WWW library (SSL support) ii openssl 0.9.7g-1ubuntu1.1 Secure Socket Layer (SSL) binary and related ii python-pyopenssl 0.6-2ubuntu1 Python wrapper around the OpenSSL library (d ii python2.4-pyopenssl 0.6-2ubuntu1 Python wrapper around the OpenSSL library, e ii ssl-cert 1.0-11 Simple debconf wrapper for openssl On the Openssl site many versions can be downloaded which 0.9.7a-x, 0.9.8a-x, ecc.. Which the correct version? Someone knows gives to me of the information to care of coupled freeradius-version&Openssl-version? anticipated thanks Matteo
Hi, so Matteo is trying to setup wireless 8021x auth with freeradius. Eventually most of the information happened to end in -devel, where I asked him to stop mailing to, because I'm quite convinced that his problems don't belong there. That said, "dpkg -s freeradius openssl" should give you the information you are seeking, which looks quite irrelevant to the problem at hand. In short, after the information you gave, I strongly suspect the XP supplicant not responding to Challenges due to still improper OID's in your certs. Please make double sure your windows cert store or however it is called contains the rootCA and your certificate properly, and those get into consideration when you test your wireless setup. Exporting them from cert store and attaching them (provided they are for test purposes and don't contain real crypto secrets) would be my suggestion. Something along this line should apply to your /etc/X1/jagger.pem. ah and yes, just the default users file would suffice. regards K. Hoercher
K. Hoercher wrote:
Hi,
so Matteo is trying to setup wireless 8021x auth with freeradius. Eventually most of the information happened to end in -devel, where I asked him to stop mailing to, because I'm quite convinced that his problems don't belong there.
That said, "dpkg -s freeradius openssl" should give you the information you are seeking, which looks quite irrelevant to the problem at hand.
In short, after the information you gave, I strongly suspect the XP supplicant not responding to Challenges due to still improper OID's in your certs. Please make double sure your windows cert store or however it is called contains the rootCA and your certificate properly, and those get into consideration when you test your wireless setup. Exporting them from cert store and attaching them (provided they are for test purposes and don't contain real crypto secrets) would be my suggestion. Something along this line should apply to your /etc/X1/jagger.pem.
ah and yes, just the default users file would suffice.
regards K. Hoercher - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I have not understood yours suggestion. But as I can be sure that the certs they are corrected for TLS? Excuse me but it is from little that use freeradius. If I use the CA.all script that I find in the scripts directory I obtain the same type of certs that use now! Which thing is the cause of this problem? I do not want to leave to lose! Tomorrow I make the tests also with Peap and see with sniffer that what out from the client when I'm asking my access-request... Thanks
K. Hoercher wrote:
Hi,
so Matteo is trying to setup wireless 8021x auth with freeradius. Eventually most of the information happened to end in -devel, where I asked him to stop mailing to, because I'm quite convinced that his problems don't belong there.
That said, "dpkg -s freeradius openssl" should give you the information you are seeking, which looks quite irrelevant to the problem at hand.
In short, after the information you gave, I strongly suspect the XP supplicant not responding to Challenges due to still improper OID's in your certs. Please make double sure your windows cert store or however it is called contains the rootCA and your certificate properly, and those get into consideration when you test your wireless setup. Exporting them from cert store and attaching them (provided they are for test purposes and don't contain real crypto secrets) would be my suggestion. Something along this line should apply to your /etc/X1/jagger.pem.
ah and yes, just the default users file would suffice.
regards K. Hoercher - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I do not succeed to find one solution to my problem. I have verified exporting the certs stored in the client. It's the same of original. how I can make to generate certs that sure they go well for my case? I must install of the appropriate libraries? The XP supplicant could give of the problems… (SP2) Would have to use of one various? some ideas/helps Matteo
participants (2)
-
K. Hoercher -
Matteo Lazzarini