Wired Ethernet EAP-TLS

tnt at kalik.co.yu tnt at kalik.co.yu
Fri Jun 29 10:43:43 CEST 2007


Can you debug radius on the switch? It should have some kind of a log.

Ivan Kalik
Kalik Informatika ISP


Dana 29/6/2007, "Darren Maden" <radius at dncomputing.co.uk> piše:

> >
> >   Does the switch have the IP address of the server?
> >
>
>Yes, the switch is setup in the same way as my wireless routers (which
>work) and no errors are detected when I start radiusd in debug
>mode...although if the switch isn't seeing the server then there
>probably wouldn't be any errors, I'm quite confident that these settings
>are right though, there isn't really a lot involved.
>
>
> >   As was said before, the problem is likely between the switch and the
> > RADIUS server.   Looking at the traffic between the switch and
> > supplicant probably won't help you debug issues between the switch and
> > the RADIUS server.
>
>Nothing is going out to the RADIUS server from the switch, it's on the
>same VLAN and other traffic can get through.  Other than some timing and
>amount of retry options the only options on the switch are RADIUS Server
>IP, ports, secret and name for the switch as well as the per-port options.
>
>But why is the supplicant receiving "success" packets?  Could the switch
>be trying to authenticate it itself in some way?
>
>
>
>~Darren Maden
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>




More information about the Freeradius-Users mailing list