EAP/TLS connection problem..

Johan Nyman Johan at mediavisiongroup.se
Tue Apr 29 16:30:41 CEST 2008 

Hello All,

 


I can seem to connect to the radius server, this is the error code: 

 

Anyone has a clue on what It could be?

........................................

 

Ready to process requests.

        User-Name = "Linux1"

        NAS-IP-Address = 10.0.0.197

        Called-Station-Id = "00-20-a2-64-c3-b1:devnet"

        Calling-Station-Id = "00-0e-33-fe-3a-36;devnet"

        NAS-Identifier = "MVG-1"

        Framed-MTU = 1400

        NAS-Port-Type = Wireless-802.11

        EAP-Message = 0x020a000b014c696e757831

        Message-Authenticator = 0x68a4345956d14cfdd678854f4c955ac7

+- entering group authorize

++[preprocess] returns ok

++[chap] returns noop

++[mschap] returns noop

    rlm_realm: No '@' in User-Name = "Linux1", looking up realm NULL

    rlm_realm: No such realm "NULL"

++[suffix] returns noop

  rlm_eap: EAP packet type response id 10 length 11

  rlm_eap: No EAP Start, assuming it's an on-going EAP conversation

++[eap] returns updated

++[unix] returns notfound

    users: Matched entry Linux1 at line 219

        expand: Hello, %{User-Name} -> Hello, Linux1

++[files] returns ok

++[expiration] returns noop

++[logintime] returns noop

rlm_pap: WARNING! No "known good" password found for the user.
Authentication may fail because of this.

++[pap] returns noop

  rad_check_password:  Found Auth-Type EAP

auth: type "EAP"

+- entering group authenticate

  rlm_eap: EAP Identity

  rlm_eap: processing type tls

 rlm_eap_tls: Requiring client certificate

  rlm_eap_tls: Initiate

  rlm_eap_tls: Start returned 1

++[eap] returns handled

        Reply-Message = "Hello, Linux1"

        EAP-Message = 0x010b00060d20

        Message-Authenticator = 0x00000000000000000000000000000000

        State = 0x84a6103884ad1d7df7f1c190d83cc59f

Finished request 16.

 

........................................

 

 

The wpa_supplican.conf loks like this:

 

 

network={

  ssid="devnet"

  scan_ssid=1

  key_mgmt=WPA-EAP

  pairwise=CCMP TKIP

  group=CCMP TKIP

  auth_alg=OPEN

  proto=RSN

  eap=TLS

  identity="Linux1"

  ca_cert="/Certs/ca.pem"

  client_cert="/Certs/client.pem"

  private_key="/Certs/client.pem"

  private_key_passwd="secret"

}

 

 

........................................

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080429/b645ff82/attachment.html>

More information about the Freeradius-Users mailing list