Trouble migrating EAP TLS authentication from Free Radius 1.1.8 to 2.1.9
Alan DeKok
aland at deployingradius.com
Thu Aug 5 16:07:46 CEST 2010
SEELEMANN, Sven wrote:
> I've been trying to migrate the FreeRadius server from 1.1.8 to the
> latest (stable) release (2.1.9 at the last try, 2.1.8 before that).
The configurations should be largely similar. i.e. minimal changes
should be required.
> I'm
> using EAP TLS to authenticate modem connection to our DSLAM (using 2 way
> authentication). The 1.1.8 server has no trouble performing the task,
> however, the 2.1.x server doesn't ever complete the authentication
> process. From what I can tell, once the 1.1.8 server gets the final TLS
> ACK it allows the connection, but the 2.1.x server is looking for
> something else.
No. The server sends a challenge, and the supplicant (PC) fails to
continue the EAP conversation.
> Is this a FreeRadius issue or a DSLAM problem? If DSLAM, where is the
> best place to start looking for description of what should be happening?
Check that the certificates, etc. are the same between the two
configurations.
Alan DeKok.
More information about the Freeradius-Users
mailing list