can't get WPA/2 and EAP-TTLS to work
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Fri Feb 15 18:25:18 CET 2008
Hi,
>
> The wpa_supplicant keeps looping looking for missing keys
> accordint to Jouni. I suspected my Cisco access point was
> not configured properly, but Cisco claims that FreeRADIUS is
> asking the access point about dynamic VLANs which aren't even
> configured in FreeRADIUS (see configurations below).
from what i can see, rubbish. freeradius as an AAA does not
ask NAs about their VLANs - dynamic or otherwise! there a re
few things wonky or wrong.
first , what version of FR are you using exactly? i would STRONGLY
recommend 2.0.2 as 1.1.x (you appear to be 1.1.7 with patches...)
isnt as configurable.
secondly
> foo User-Password == "password"
foo Cleartext-Password := "password"
(as clearly in the docs)
> Thu Feb 14 08:41:05 2008 : Debug: rlm_eap_tls: add_reply failed to create attribute MS-MPPE-Recv-Key: Unknown attribute
> "MS-MPPE-Recv-Key"
> Thu Feb 14 08:41:05 2008 : Debug: rlm_eap_tls: add_reply failed to create attribute MS-MPPE-Send-Key: Unknown attribute
> "MS-MPPE-Send-Key"
this aint good. you've got to have these in your TTLS or things arent
going to work. dictionary files all okay and present and loaded?
you arent filtering attributes from my quick scan of the config...unless
you've not copied that part.
alan
More information about the Freeradius-Users
mailing list