Problems authenticating with freeRADIUS and LEAP

Alan DeKok aland at
Sun May 31 09:13:26 CEST 2009

smaaland wrote:
> I have set up a freeradius server, which are pointed to by my Linksys
> WRT54GL router. Everything seems to work with LEAP authentication, such as
> radtest from localhost and also from my laptop (When router is running WPA2
> Personal, and i can connect to the network). The problem comes when i switch
> to WPA2 Enterprise. I try to connect with my user credentials to the access
> point, and the radius server gets the request, authenricates and sends a
> "Access-Accept" message back to the AP.

  Don't use LEAP.  It's insecure.

  Oh, and *most* access points don't support LEAP.  Use a common EAP
protocol, like EAP-TTLS.

> But my laptop never gets connected completely. It just says that it is
> "trying to authenticate", and seems to send more access requests to the AP,
> and the radiusserver reponds to them with more Access-Accept, but it never
> works.

  Because the AP doesn't support LEAP.

  Alan DeKok.

More information about the Freeradius-Users mailing list