802.11 AP Access-Accept problem

Drew Linsalata drew at gothambus.com
Fri May 26 18:44:56 CEST 2006

We have a working freeradius install authenticating clients via a 
Proxim/Orinoco AP-700 access point.  The AP is configured to do EAP 
authentication via the radius server.  No problem with that.

Freeradius is authenticating users as per our requirements, and is and 
sending Access-Accept to the AP.

rad_recv: Access-Request packet from host W.X.Y.Z:6001, id=3, length=154
         User-Name = "testuser"
         NAS-IP-Address = W.X.Y.Z
         Called-Station-Id = "00-20-a6-5d-9c-d1:ourSSID"
         Calling-Station-Id = "00-06-25-2f-8c-4e"
         NAS-Identifier = "ORiNOCO-AP-700-5d-9c-d1"
         Framed-MTU = 1400
         NAS-Port-Type = Wireless-802.11
         EAP-Message = 0x0204000c01746573746f6e65
         Message-Authenticator = 0x75e8339aab77b394dab2beef5e9228dd
Sending Access-Accept of id 3 to W.X.Y.Z port 6001

Problem is, the AP isn't getting the accepts.  The EAP request counter 
increments on the AP when we attempt a connection.  The EAP reject 
counter increments on the AP when we connect with bad credentials.  The 
EAP accept counter never increments even with successful authentication. 
  The Windows client is left in "Validating Identity" state.


Drew Linsalata
The Gotham Bus Company, Inc.
Dedicated Servers and Colocation Solutions
Long Island, New York

More information about the Freeradius-Users mailing list