Win 2000 -> Cisco 3550 -> freeradius
Michael Langer
mphantom at gmx.net
Tue Jul 5 16:01:27 CEST 2005
> --- Ursprüngliche Nachricht ---
> Von: "Alan DeKok" <aland at ox.org>
> An: FreeRadius users mailing list <freeradius-users at lists.freeradius.org>
> Betreff: Re: Win 2000 -> Cisco 3550 -> freeradius
> Datum: Mon, 04 Jul 2005 12:07:39 -0400
>
> "Michael Langer" <mphantom at gmx.net> wrote:
> > The switch only allow auhtentificated clients (windows) to send packets
> to
> > the intranet. All works well, but all the time freeradius reject because
> no
> > User-Password, but i insert one in the login screen.
>
> Ok...
>
> > EAP-Message = 0x020100090174657374
>
> So the supplicant is doing EAP, and the switch is sending EAP to the
> server.
>
> > rlm_eap: EAP packet type response id 1 length 9
> > rlm_eap: No EAP Start, assuming it's an on-going EAP conversation
>
> Hmm.. the EAP module should see that EAP packet as an EAP-Identity,
> and start doing EAP.
>
> Do you have any EAP types configured in the server?
>
> Alan DeKok.
I copy the sections, if you need further information plz say it. (I thought
the whole files will be to much)
->radiusd.conf:
modules {
...
$INCLUDE §(confdir)/eap.conf
...
}
authorize {
...
eap
...
}
authenticate {
...
eap
}
-> eap.conf:
eap{
default_eap_type = peap
...
md5 {
}
leap{
}
gtc{
auth_type = PAP
}
tls{
...
}
peap{
default_eap_type = mschapv2
}
mschapv2{
}
}
--
Weitersagen: GMX DSL-Flatrates mit Tempo-Garantie!
Ab 4,99 Euro/Monat: http://www.gmx.net/de/go/dsl
More information about the Freeradius-Users
mailing list