802.11 AP Access-Accept problem
Drew Linsalata
drew at gothambus.com
Fri May 26 18:44:56 CEST 2006
We have a working freeradius install authenticating clients via a
Proxim/Orinoco AP-700 access point. The AP is configured to do EAP
authentication via the radius server. No problem with that.
Freeradius is authenticating users as per our requirements, and is and
sending Access-Accept to the AP.
rad_recv: Access-Request packet from host W.X.Y.Z:6001, id=3, length=154
User-Name = "testuser"
NAS-IP-Address = W.X.Y.Z
Called-Station-Id = "00-20-a6-5d-9c-d1:ourSSID"
Calling-Station-Id = "00-06-25-2f-8c-4e"
NAS-Identifier = "ORiNOCO-AP-700-5d-9c-d1"
Framed-MTU = 1400
NAS-Port-Type = Wireless-802.11
EAP-Message = 0x0204000c01746573746f6e65
Message-Authenticator = 0x75e8339aab77b394dab2beef5e9228dd
Sending Access-Accept of id 3 to W.X.Y.Z port 6001
Problem is, the AP isn't getting the accepts. The EAP request counter
increments on the AP when we attempt a connection. The EAP reject
counter increments on the AP when we connect with bad credentials. The
EAP accept counter never increments even with successful authentication.
The Windows client is left in "Validating Identity" state.
--
Drew Linsalata
The Gotham Bus Company, Inc.
Dedicated Servers and Colocation Solutions
Long Island, New York
http://www.gothambus.com
More information about the Freeradius-Users
mailing list