reauth-problem with WPA2-tls

Alan DeKok aland at
Wed Jun 2 23:27:50 CEST 2010

Andreas Hartmann wrote:
> In eap.conf, the option eap -> tls -> cache -> enable is switched off
> and fast_reauth in wpa_supplicant is enabled.

  Uh... that makes no sense.

  You've disabled caching (i.e fast re-auth) on the server, and enabled
it on the client.  Why are you surprised that fast re-auth isn't working?

> If the reconnect takes place, the missing cache-data seems to be the
> problem -> the user cannot be authenticated:

  <shrug>  That's what you told the server to do.

> If fast_reauth in wpa_supplicant is disabled, the reauthentication works
> fine, but the connection between the AP and the supplicant ist
> interrupted for about 20 seconds - much to long :-).
> Do you have any idea how to solve this problem?

  Find out why the supplicant is taking 20s for authentication.

  Alan DeKok.

More information about the Freeradius-Users mailing list