eap-peap inner outer identity

Per Hermansson hermansson.per at bredband.net
Thu Apr 23 21:02:52 CEST 2009


Hi
I'm having troubles setting up EAP-PEAP with freeradius (2.1.0) + 
hostapd (0.6.9) + wpa_supplicant (0.6.6)
What I've done is mostly to follow 
http://tldp.org/HOWTO/8021X-HOWTO/freeradius.html
Which basically is to update eap.conf to use peap and add my login 
details to the users file:

"testuser"      User-Password == "Secret149"

The problem is that I always get the following output from freeradius -X 
upon connecting:
Ready to process requests.
rad_recv: Access-Request packet from host 127.0.0.1 port 45567, id=1, 
length=168
        User-Name = "0016dbd4b7d5"
        User-Password = "0016dbd4b7d5"
        NAS-IP-Address = 192.168.1.1
        Called-Station-Id = "00-21-91-F3-D2-21:My-radius"
        Calling-Station-Id = "00-16-EA-E5-C8-E6"
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 11Mbps 802.11b"
...
No authenticate method (Auth-Type) configuration found for the request: 
Rejecting the user
Failed to authenticate the user.

I've tried to search for the problem and I think it has to do with inner 
and outer identity since the User-Name is set to my MAC address.
One solution suggested was to use virtual servers and have different 
users files for the outer and inner identity.
But I haven't found an examples explaining how to do this.

Per



More information about the Freeradius-Users mailing list